Windows
Analysis Report
http://pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev/response_type.html
Overview
General Information
Detection
Score: | 68 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 2996 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 4108 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2304 --fi eld-trial- handle=226 4,i,181580 9960812048 6582,37651 2924684232 9535,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6448 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://pub-53 78e135058a 4d2abb5385 b53c4be7aa .r2.dev/re sponse_typ e.html" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | Page Title: | ||
Source: | Page Title: | ||
Source: | Page Title: | ||
Source: | Page Title: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | 1 Scripting | Valid Accounts | Windows Management Instrumentation | 1 Scripting | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
d26p066pn2w0s0.cloudfront.net | 13.32.27.44 | true | false | unknown | |
pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev | 104.18.3.35 | true | false | unknown | |
www.google.com | 142.250.186.68 | true | false | unknown | |
api.ipify.org | 104.26.12.205 | true | false | unknown | |
fp2e7a.wpc.phicdn.net | 192.229.221.95 | true | false | unknown | |
docucdn-a.akamaihd.net | unknown | unknown | false | unknown | |
logo.clearbit.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true | unknown | ||
false |
| unknown | |
false |
| unknown | |
true | unknown | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
142.250.186.68 | www.google.com | United States | 15169 | GOOGLEUS | false | |
104.26.12.205 | api.ipify.org | United States | 13335 | CLOUDFLARENETUS | false | |
104.18.3.35 | pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev | United States | 13335 | CLOUDFLARENETUS | false | |
104.18.2.35 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
13.32.27.44 | d26p066pn2w0s0.cloudfront.net | United States | 7018 | ATT-INTERNET4US | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
104.26.13.205 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
172.217.16.196 | unknown | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
192.168.2.6 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1500176 |
Start date and time: | 2024-08-28 00:42:29 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 10s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev/response_type.html |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 9 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal68.phis.win@17/15@18/10 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.186.35, 142.250.184.206, 74.125.206.84, 34.104.35.123, 172.217.18.10, 2.21.72.133, 2.21.72.144, 142.250.186.74, 142.250.185.170, 216.58.212.170, 216.58.206.42, 172.217.16.202, 142.250.186.42, 142.250.185.138, 142.250.181.234, 142.250.186.106, 142.250.186.170, 216.58.206.74, 142.250.185.234, 142.250.185.202, 172.217.16.138, 142.250.184.234, 2.19.126.140, 2.19.126.135, 20.114.59.183, 2.19.126.137, 2.19.126.163, 192.229.221.95, 52.165.164.15, 13.95.31.18, 13.85.23.206, 20.242.39.171, 40.68.123.157, 216.58.206.67
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, ajax.googleapis.com, slscr.update.microsoft.com, ctldl.windowsupdate.com.delivery.microsoft.com, clientservices.googleapis.com, ctldl.windowsupdate.com, a767.dspw65.akamai.net, docucdn-a.akamaihd.net.edgesuite.net, download.windowsupdate.com.edgesuite.net, fe3cr.delivery.mp.microsoft.com, a1737.b.akamai.net, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, update.googleapis.com, clients.l.google.com, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: http://pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev/response_type.html
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 85578 |
Entropy (8bit): | 5.366055229017455 |
Encrypted: | false |
SSDEEP: | 1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2 |
MD5: | 2F6B11A7E914718E0290410E85366FE9 |
SHA1: | 69BB69E25CA7D5EF0935317584E6153F3FD9A88C |
SHA-256: | 05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E |
SHA-512: | 0D40BCCAA59FEDECF7243D63B33C42592541D0330FEFC78EC81A4C6B9689922D5B211011CA4BE23AE22621CCE4C658F52A1552C92D7AC3615241EB640F8514DB |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27150 |
Entropy (8bit): | 4.357340680151037 |
Encrypted: | false |
SSDEEP: | 384:6bamwIluB0sJQqCeSQup5szCUXAG0VVi82OgoKACZQQofNJXY3gW3:603Mp5If8WOmgW3 |
MD5: | 46DD133EE00DC1BAE5E4EEBA7B88432F |
SHA1: | 8AF86A4AC91CE48C062216FB94A6E1D57618A19B |
SHA-256: | 9EB52EE46C7AB5EA4CA0982415DA99FDED1B7D7354F75E50847BDAE6CB44EB66 |
SHA-512: | CB49F9E3812E2C262AF374E79BD8905CB508A45BF2C2D6AF62EED85AF43770872486A55E9425882FEDA9FB3A57A317A3C18BE1E286ADAF0C76BE7F1B0DFA8474 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 119774 |
Entropy (8bit): | 5.275223652902517 |
Encrypted: | false |
SSDEEP: | 3072:PTA7VPukHsdNbDNIXaInzof7+qN1UbXA1GQ95GZM+O2:PTA7VGCsbbDNIBcz+qN1UbXA1zC6c |
MD5: | 6000538B14FC5D0DFEF73C0B12BCEB3F |
SHA1: | 21372C9333E57BBE0059E71C0E608C0B97868722 |
SHA-256: | 24B1FE06F71D139D8630F0ED952463B8A55122416B813A981FD204597B96FAE0 |
SHA-512: | A6F52E27755498A9BE25F87B57419297350101335D490F87B79C996C60CDDC4989A3AF285BB8350FDC335F544DBE53EA08E5F9D092C816D192DD70FF26F16AF9 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-5378e135058a4d2abb5385b53c4be7aa.r2.dev/response_type.html |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 20 |
Entropy (8bit): | 3.446439344671015 |
Encrypted: | false |
SSDEEP: | 3:YMb1gXMR4n:YMeXNn |
MD5: | 2E1E0B28D6E7522CB687E20D37BCD8AA |
SHA1: | 03D5EFE3719CAB433421C4D9BF6C73E0B8EB69E5 |
SHA-256: | 124CE91528D8ACB894BDC980ABDDF035B38CDC64CE13F088D431E0B10D61FB24 |
SHA-512: | 70BB31CA0F3907AB6B5860459643E422AAD6685F32D519C23E671CD46F29ABF2DB1F0C53E54313FF6FE7B54A75CDCA18A9232556B3273E6DB200BFCD22BA82BD |
Malicious: | false |
Reputation: | low |
URL: | https://api.ipify.org/?format=json |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 16 |
Entropy (8bit): | 3.875 |
Encrypted: | false |
SSDEEP: | 3:HwT:QT |
MD5: | 344EB8D19F5C0A3435EF32FD9601F1FB |
SHA1: | E082EB1D89D91CC1A25A1D510268E576109DA07E |
SHA-256: | B44289B54959639FCA6A742F7CC2E2A5AF9C6E7B73C1B3E25227CA9790F3A587 |
SHA-512: | EB9F1CD4A566192160371F4B182EE00180F6912333FFB79C537BD80635A6AFE6379FBE7BB74043D635BA65C9F4F956D9E97E516E24E516F2591192A36F866EAE |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISEAnPE5QKSGqd6hIFDc5BTHo=?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2544 |
Entropy (8bit): | 4.082394839137138 |
Encrypted: | false |
SSDEEP: | 48:3B51f2CBBS9dRflogFJ5FJFipVHPW4OZJvlyPoLQzOd:3B51dBkFfmafuHGyeQzW |
MD5: | 440FE9F91FFEA5C808B75D74298423E7 |
SHA1: | C42C5C7B43EF49F1C1A3191EFD5624477E9CC549 |
SHA-256: | 7C5E35B0C8299B8660A9C4F4393C7AF2CED0143540A1ECDF266D174B690B779B |
SHA-512: | 0483120687CB3130C1830A1FDBCCC82A2200D72552BE14FA3AE4B73899DE1576095B25C3B277B80206190580CA859F87CD38EEEB7AB29C1A49F79841B78D0068 |
Malicious: | false |
Reputation: | low |
URL: | https://docucdn-a.akamaihd.net/olive/images/2.47.0/header-logos/docusign.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 20 |
Entropy (8bit): | 3.446439344671015 |
Encrypted: | false |
SSDEEP: | 3:YMb1gXMR4n:YMeXNn |
MD5: | 2E1E0B28D6E7522CB687E20D37BCD8AA |
SHA1: | 03D5EFE3719CAB433421C4D9BF6C73E0B8EB69E5 |
SHA-256: | 124CE91528D8ACB894BDC980ABDDF035B38CDC64CE13F088D431E0B10D61FB24 |
SHA-512: | 70BB31CA0F3907AB6B5860459643E422AAD6685F32D519C23E671CD46F29ABF2DB1F0C53E54313FF6FE7B54A75CDCA18A9232556B3273E6DB200BFCD22BA82BD |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2544 |
Entropy (8bit): | 4.082394839137138 |
Encrypted: | false |
SSDEEP: | 48:3B51f2CBBS9dRflogFJ5FJFipVHPW4OZJvlyPoLQzOd:3B51dBkFfmafuHGyeQzW |
MD5: | 440FE9F91FFEA5C808B75D74298423E7 |
SHA1: | C42C5C7B43EF49F1C1A3191EFD5624477E9CC549 |
SHA-256: | 7C5E35B0C8299B8660A9C4F4393C7AF2CED0143540A1ECDF266D174B690B779B |
SHA-512: | 0483120687CB3130C1830A1FDBCCC82A2200D72552BE14FA3AE4B73899DE1576095B25C3B277B80206190580CA859F87CD38EEEB7AB29C1A49F79841B78D0068 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 85578 |
Entropy (8bit): | 5.366055229017455 |
Encrypted: | false |
SSDEEP: | 1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2 |
MD5: | 2F6B11A7E914718E0290410E85366FE9 |
SHA1: | 69BB69E25CA7D5EF0935317584E6153F3FD9A88C |
SHA-256: | 05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E |
SHA-512: | 0D40BCCAA59FEDECF7243D63B33C42592541D0330FEFC78EC81A4C6B9689922D5B211011CA4BE23AE22621CCE4C658F52A1552C92D7AC3615241EB640F8514DB |
Malicious: | false |
Reputation: | low |
URL: | https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Aug 28, 2024 00:43:22.575172901 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Aug 28, 2024 00:43:24.257581949 CEST | 49735 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:24.257862091 CEST | 49736 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:24.264235020 CEST | 80 | 49735 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.264246941 CEST | 80 | 49736 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.264333963 CEST | 49735 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:24.264333963 CEST | 49736 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:24.264517069 CEST | 49736 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:24.271131992 CEST | 80 | 49736 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.752881050 CEST | 80 | 49736 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.782385111 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:24.782447100 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.782650948 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:24.782932043 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:24.782951117 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:24.796916008 CEST | 49736 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:25.265198946 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.265494108 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.265512943 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.266535044 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.266644955 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.267654896 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.267719030 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.267848969 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.267855883 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.308407068 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.636571884 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.636630058 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.636670113 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.636672020 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.636683941 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.636728048 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.636733055 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.637140989 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.637198925 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.637200117 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.637208939 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.637238026 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.637697935 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.643003941 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.643038034 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.643049955 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.643054962 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.643111944 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.643125057 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.683336973 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.727011919 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727111101 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727140903 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727164984 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.727173090 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727219105 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.727225065 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727787971 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727829933 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.727835894 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727900982 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727926970 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727938890 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.727942944 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.727987051 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.728698969 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.728780985 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.728816032 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.728821993 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.728826046 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.728866100 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.728869915 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729674101 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729717970 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729722977 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.729727983 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729772091 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.729774952 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729826927 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.729865074 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.729870081 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.730598927 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.730643988 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.730648994 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.769140959 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.769200087 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.769207001 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.809838057 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.817393064 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.817584038 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.817627907 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.817639112 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818128109 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818135023 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818181992 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.818186998 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818274021 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818310976 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818316936 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.818320990 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.818348885 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.819047928 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819093943 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.819101095 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819116116 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819144011 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.819149017 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819160938 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.819844961 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819884062 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819885015 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.819895029 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.819925070 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.820693016 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.820729971 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.820738077 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.820745945 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.820766926 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.821600914 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.821633101 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.821650028 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.821655035 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.821682930 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.822326899 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.822381020 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.822387934 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.822433949 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.822474003 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.822527885 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.823143959 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.823201895 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.908020973 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.908072948 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.908082008 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.908097029 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.908140898 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:25.908145905 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.908195019 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:25.908236027 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:26.244185925 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:26.244206905 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:26.444097996 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:26.444119930 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:26.444281101 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:26.444729090 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:26.444742918 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.092658997 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.092927933 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:27.092957020 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.093905926 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.093966007 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:27.191678047 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:27.191770077 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.240350008 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:27.240365028 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:27.293801069 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:27.992883921 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:27.992925882 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:27.993046999 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:27.993654013 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:27.993668079 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.069484949 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.069525003 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.069641113 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.073596001 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.073616028 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.504918098 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.549550056 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:28.675740957 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:28.675751925 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.679450035 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.679510117 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:28.726430893 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.726500988 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.729758024 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.729773045 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.730118990 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.773014069 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:28.820497990 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.991936922 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:28.992223024 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.994620085 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:28.994637966 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:28.999346018 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.999481916 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:28.999551058 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.008538008 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.008550882 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.010536909 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.010552883 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.010695934 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.011837006 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.011851072 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.034719944 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:29.051867962 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.051919937 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.052006006 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.052587032 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.052603006 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.107213020 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.107397079 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.107664108 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:29.181054115 CEST | 49743 | 443 | 192.168.2.4 | 104.26.12.205 |
Aug 28, 2024 00:43:29.181075096 CEST | 443 | 49743 | 104.26.12.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.218144894 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.218184948 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.218257904 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.218781948 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.218796015 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.271428108 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.271457911 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.271517992 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.272310972 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.272325039 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.637365103 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.638139009 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.638185978 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.638875008 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.639450073 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.639517069 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.639872074 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:29.680515051 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:29.746542931 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.761271000 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.761291981 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.762803078 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.762924910 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.793970108 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.815959930 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.816060066 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.816561937 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.816593885 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.817008972 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.817028046 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.817843914 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.817903996 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.870470047 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.870552063 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.871460915 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.920872927 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.921098948 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.922307014 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.922323942 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:29.924753904 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.924767017 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.925618887 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:29.927850008 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.927922010 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:29.928010941 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:29.933804035 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:29.965189934 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:29.980500937 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:30.019191980 CEST | 49752 | 443 | 192.168.2.4 | 104.26.13.205 |
Aug 28, 2024 00:43:30.019227982 CEST | 443 | 49752 | 104.26.13.205 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068290949 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068445921 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068505049 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068531036 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068556070 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.068558931 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068591118 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.068614006 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.068646908 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.068994999 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.069078922 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.069132090 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.069139957 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.069870949 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.069922924 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.069930077 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.073103905 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.073158026 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.073168039 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.121448994 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.144979954 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:30.145056009 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:30.145121098 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:30.146755934 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 28, 2024 00:43:30.146779060 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Aug 28, 2024 00:43:30.155740976 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.155855894 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.155904055 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.155926943 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156002998 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156148911 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.156158924 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156316042 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156347990 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156362057 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.156369925 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156408072 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.156447887 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.156486988 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.159945965 CEST | 49746 | 443 | 192.168.2.4 | 104.18.2.35 |
Aug 28, 2024 00:43:30.159965038 CEST | 443 | 49746 | 104.18.2.35 | 192.168.2.4 |
Aug 28, 2024 00:43:30.259202957 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:30.259258986 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:30.259314060 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:30.270512104 CEST | 49748 | 443 | 192.168.2.4 | 13.32.27.44 |
Aug 28, 2024 00:43:30.270546913 CEST | 443 | 49748 | 13.32.27.44 | 192.168.2.4 |
Aug 28, 2024 00:43:36.985558033 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:36.985627890 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:36.985675097 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:36.991868973 CEST | 49742 | 443 | 192.168.2.4 | 142.250.186.68 |
Aug 28, 2024 00:43:36.991883993 CEST | 443 | 49742 | 142.250.186.68 | 192.168.2.4 |
Aug 28, 2024 00:43:39.624805927 CEST | 80 | 49735 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:39.634110928 CEST | 49735 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:39.718713999 CEST | 50851 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:39.723617077 CEST | 53 | 50851 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:39.723762989 CEST | 50851 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:39.723846912 CEST | 50851 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:39.728713989 CEST | 53 | 50851 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:40.174268961 CEST | 53 | 50851 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:40.181168079 CEST | 50851 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:40.187735081 CEST | 53 | 50851 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:40.187793970 CEST | 50851 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:40.697030067 CEST | 49723 | 80 | 192.168.2.4 | 199.232.214.172 |
Aug 28, 2024 00:43:40.704269886 CEST | 80 | 49723 | 199.232.214.172 | 192.168.2.4 |
Aug 28, 2024 00:43:40.704329014 CEST | 49723 | 80 | 192.168.2.4 | 199.232.214.172 |
Aug 28, 2024 00:43:40.917061090 CEST | 49735 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:43:40.924257994 CEST | 80 | 49735 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:43:42.187385082 CEST | 59517 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:42.192228079 CEST | 53 | 59517 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:42.192300081 CEST | 59517 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:42.192331076 CEST | 59517 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:42.197083950 CEST | 53 | 59517 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:42.639585972 CEST | 53 | 59517 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:42.639936924 CEST | 59517 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:42.645071983 CEST | 53 | 59517 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:42.645150900 CEST | 59517 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:44:09.762913942 CEST | 49736 | 80 | 192.168.2.4 | 104.18.3.35 |
Aug 28, 2024 00:44:09.767724037 CEST | 80 | 49736 | 104.18.3.35 | 192.168.2.4 |
Aug 28, 2024 00:44:26.511337042 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:26.511379004 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:26.512677908 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:26.513855934 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:26.513870001 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:27.145971060 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:27.146337032 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:27.146361113 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:27.146673918 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:27.147042036 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:27.147097111 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:27.200442076 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:30.066375971 CEST | 49724 | 80 | 192.168.2.4 | 199.232.214.172 |
Aug 28, 2024 00:44:30.072422981 CEST | 80 | 49724 | 199.232.214.172 | 192.168.2.4 |
Aug 28, 2024 00:44:30.072469950 CEST | 49724 | 80 | 192.168.2.4 | 199.232.214.172 |
Aug 28, 2024 00:44:37.068432093 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:37.069166899 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Aug 28, 2024 00:44:37.069327116 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:38.923311949 CEST | 59523 | 443 | 192.168.2.4 | 172.217.16.196 |
Aug 28, 2024 00:44:38.923341036 CEST | 443 | 59523 | 172.217.16.196 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Aug 28, 2024 00:43:22.660123110 CEST | 53 | 65383 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:22.678472996 CEST | 53 | 58488 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:23.760358095 CEST | 53 | 61623 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:24.246130943 CEST | 63971 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:24.246500969 CEST | 51843 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:24.256980896 CEST | 53 | 51843 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:24.257122993 CEST | 53 | 63971 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:24.756062031 CEST | 59948 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:24.756207943 CEST | 51185 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:24.767034054 CEST | 53 | 59948 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:24.785346985 CEST | 53 | 51185 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:26.241034985 CEST | 61084 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:26.241547108 CEST | 50551 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:26.253751040 CEST | 53 | 63522 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:26.435743093 CEST | 60672 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:26.436463118 CEST | 57871 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:26.442459106 CEST | 53 | 60672 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:26.443003893 CEST | 53 | 57871 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:27.984560013 CEST | 59145 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:27.985094070 CEST | 59002 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:27.991343021 CEST | 53 | 59145 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:27.991493940 CEST | 53 | 59002 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:27.993139982 CEST | 53 | 63087 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:29.007760048 CEST | 51509 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.008074999 CEST | 60849 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.015381098 CEST | 53 | 60849 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:29.036066055 CEST | 53 | 51509 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:29.220695972 CEST | 53 | 51592 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:29.224046946 CEST | 52683 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.224442959 CEST | 55825 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.262154102 CEST | 51105 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.262527943 CEST | 57715 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:43:29.269164085 CEST | 53 | 51105 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:29.269320011 CEST | 53 | 57715 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:39.717957973 CEST | 53 | 50855 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:41.639669895 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Aug 28, 2024 00:43:41.986743927 CEST | 53 | 50883 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:43:42.186899900 CEST | 53 | 54291 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:44:01.024763107 CEST | 53 | 60994 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:44:22.518213034 CEST | 53 | 63047 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:44:23.534277916 CEST | 53 | 53674 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:44:26.498648882 CEST | 63579 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:44:26.498648882 CEST | 60862 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 28, 2024 00:44:26.509922028 CEST | 53 | 60862 | 1.1.1.1 | 192.168.2.4 |
Aug 28, 2024 00:44:26.509927034 CEST | 53 | 63579 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Aug 28, 2024 00:43:24.785425901 CEST | 192.168.2.4 | 1.1.1.1 | c241 | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Aug 28, 2024 00:43:24.246130943 CEST | 192.168.2.4 | 1.1.1.1 | 0x2fde | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:24.246500969 CEST | 192.168.2.4 | 1.1.1.1 | 0xe4dd | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:24.756062031 CEST | 192.168.2.4 | 1.1.1.1 | 0x6414 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:24.756207943 CEST | 192.168.2.4 | 1.1.1.1 | 0x53da | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:26.241034985 CEST | 192.168.2.4 | 1.1.1.1 | 0x9ce9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:26.241547108 CEST | 192.168.2.4 | 1.1.1.1 | 0x1298 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:26.435743093 CEST | 192.168.2.4 | 1.1.1.1 | 0xa758 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:26.436463118 CEST | 192.168.2.4 | 1.1.1.1 | 0x8edb | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:27.984560013 CEST | 192.168.2.4 | 1.1.1.1 | 0x1036 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:27.985094070 CEST | 192.168.2.4 | 1.1.1.1 | 0xb98f | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.007760048 CEST | 192.168.2.4 | 1.1.1.1 | 0xec7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.008074999 CEST | 192.168.2.4 | 1.1.1.1 | 0x7095 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.224046946 CEST | 192.168.2.4 | 1.1.1.1 | 0x5278 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.224442959 CEST | 192.168.2.4 | 1.1.1.1 | 0x745a | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.262154102 CEST | 192.168.2.4 | 1.1.1.1 | 0xc933 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 28, 2024 00:43:29.262527943 CEST | 192.168.2.4 | 1.1.1.1 | 0x58 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:44:26.498648882 CEST | 192.168.2.4 | 1.1.1.1 | 0x44f2 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 28, 2024 00:44:26.498648882 CEST | 192.168.2.4 | 1.1.1.1 | 0x582b | Standard query (0) | A (IP address) | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Aug 28, 2024 00:43:24.257122993 CEST | 1.1.1.1 | 192.168.2.4 | 0x2fde | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:24.257122993 CEST | 1.1.1.1 | 192.168.2.4 | 0x2fde | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:24.767034054 CEST | 1.1.1.1 | 192.168.2.4 | 0x6414 | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:24.767034054 CEST | 1.1.1.1 | 192.168.2.4 | 0x6414 | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:26.267755032 CEST | 1.1.1.1 | 192.168.2.4 | 0x1298 | No error (0) | docucdn-a.akamaihd.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:26.291805983 CEST | 1.1.1.1 | 192.168.2.4 | 0x9ce9 | No error (0) | docucdn-a.akamaihd.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:26.442459106 CEST | 1.1.1.1 | 192.168.2.4 | 0xa758 | No error (0) | 142.250.186.68 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:26.443003893 CEST | 1.1.1.1 | 192.168.2.4 | 0x8edb | No error (0) | 65 | IN (0x0001) | false | |||
Aug 28, 2024 00:43:27.991343021 CEST | 1.1.1.1 | 192.168.2.4 | 0x1036 | No error (0) | 104.26.12.205 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:27.991343021 CEST | 1.1.1.1 | 192.168.2.4 | 0x1036 | No error (0) | 104.26.13.205 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:27.991343021 CEST | 1.1.1.1 | 192.168.2.4 | 0x1036 | No error (0) | 172.67.74.152 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:27.991493940 CEST | 1.1.1.1 | 192.168.2.4 | 0xb98f | No error (0) | 65 | IN (0x0001) | false | |||
Aug 28, 2024 00:43:29.015381098 CEST | 1.1.1.1 | 192.168.2.4 | 0x7095 | No error (0) | d26p066pn2w0s0.cloudfront.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.036066055 CEST | 1.1.1.1 | 192.168.2.4 | 0xec7b | No error (0) | d26p066pn2w0s0.cloudfront.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.036066055 CEST | 1.1.1.1 | 192.168.2.4 | 0xec7b | No error (0) | 13.32.27.44 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.036066055 CEST | 1.1.1.1 | 192.168.2.4 | 0xec7b | No error (0) | 13.32.27.14 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.036066055 CEST | 1.1.1.1 | 192.168.2.4 | 0xec7b | No error (0) | 13.32.27.129 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.036066055 CEST | 1.1.1.1 | 192.168.2.4 | 0xec7b | No error (0) | 13.32.27.77 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.248312950 CEST | 1.1.1.1 | 192.168.2.4 | 0x5278 | No error (0) | docucdn-a.akamaihd.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.256040096 CEST | 1.1.1.1 | 192.168.2.4 | 0x745a | No error (0) | docucdn-a.akamaihd.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.269164085 CEST | 1.1.1.1 | 192.168.2.4 | 0xc933 | No error (0) | 104.26.13.205 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.269164085 CEST | 1.1.1.1 | 192.168.2.4 | 0xc933 | No error (0) | 104.26.12.205 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.269164085 CEST | 1.1.1.1 | 192.168.2.4 | 0xc933 | No error (0) | 172.67.74.152 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:29.269320011 CEST | 1.1.1.1 | 192.168.2.4 | 0x58 | No error (0) | 65 | IN (0x0001) | false | |||
Aug 28, 2024 00:43:36.994373083 CEST | 1.1.1.1 | 192.168.2.4 | 0xd142 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 28, 2024 00:43:36.994373083 CEST | 1.1.1.1 | 192.168.2.4 | 0xd142 | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:44:26.509922028 CEST | 1.1.1.1 | 192.168.2.4 | 0x582b | No error (0) | 172.217.16.196 | A (IP address) | IN (0x0001) | false | ||
Aug 28, 2024 00:44:26.509927034 CEST | 1.1.1.1 | 192.168.2.4 | 0x44f2 | No error (0) | 65 | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49736 | 104.18.3.35 | 80 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Aug 28, 2024 00:43:24.264517069 CEST | 476 | OUT | |
Aug 28, 2024 00:43:24.752881050 CEST | 532 | IN | |
Aug 28, 2024 00:44:09.762913942 CEST | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49737 | 104.18.2.35 | 443 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:25 UTC | 704 | OUT | |
2024-08-27 22:43:25 UTC | 284 | IN | |
2024-08-27 22:43:25 UTC | 1085 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN | |
2024-08-27 22:43:25 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49745 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:28 UTC | 161 | OUT | |
2024-08-27 22:43:28 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49743 | 104.26.12.205 | 443 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:28 UTC | 589 | OUT | |
2024-08-27 22:43:29 UTC | 249 | IN | |
2024-08-27 22:43:29 UTC | 20 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49746 | 104.18.2.35 | 443 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:29 UTC | 579 | OUT | |
2024-08-27 22:43:30 UTC | 180 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN | |
2024-08-27 22:43:30 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49752 | 104.26.13.205 | 443 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:29 UTC | 349 | OUT | |
2024-08-27 22:43:29 UTC | 217 | IN | |
2024-08-27 22:43:29 UTC | 20 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49748 | 13.32.27.44 | 443 | 4108 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:29 UTC | 541 | OUT | |
2024-08-27 22:43:30 UTC | 494 | IN | |
2024-08-27 22:43:30 UTC | 23 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49749 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-27 22:43:29 UTC | 239 | OUT | |
2024-08-27 22:43:30 UTC | 514 | IN | |
2024-08-27 22:43:30 UTC | 55 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:43:18 |
Start date: | 27/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:43:20 |
Start date: | 27/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:43:23 |
Start date: | 27/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |