Windows
Analysis Report
http://djp.lkmh89074.dns-dynamic.net/
Overview
Detection
Score: | 52 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 600 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5788 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2052 --fi eld-trial- handle=200 8,i,671146 6874169235 385,118733 3266999770 4527,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6428 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://djp.lk mh89074.dn s-dynamic. net/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Phishing |
---|
Source: | Matcher: |
Source: | HTTP Parser: |
Source: | File created: | Jump to behavior |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Source: | File created: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 File Deletion | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
bg.microsoft.map.fastly.net | 199.232.210.172 | true | false | unknown | |
www.google.com | 142.250.186.132 | true | false | unknown | |
c.media-amazon.com | 18.239.85.223 | true | false | unknown | |
page-timelkmh89074.pages.dev | 172.66.45.14 | true | false | unknown | |
fp2e7a.wpc.phicdn.net | 192.229.221.95 | true | false | unknown | |
endpoint.prod.us-east-1.forester.a2z.com | 34.206.30.223 | true | false | unknown | |
djp.lkmh89074.dns-dynamic.net | unknown | unknown | false | unknown | |
images-na.ssl-images-amazon.com | unknown | unknown | false | unknown | |
fls-na.amazon.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false | unknown | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
172.66.46.242 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
18.239.85.223 | c.media-amazon.com | United States | 16509 | AMAZON-02US | false | |
172.66.45.14 | page-timelkmh89074.pages.dev | United States | 13335 | CLOUDFLARENETUS | false | |
34.206.30.223 | endpoint.prod.us-east-1.forester.a2z.com | United States | 14618 | AMAZON-AESUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
52.73.181.187 | unknown | United States | 14618 | AMAZON-AESUS | false | |
142.250.186.132 | www.google.com | United States | 15169 | GOOGLEUS | false | |
54.173.65.240 | unknown | United States | 14618 | AMAZON-AESUS | false |
IP |
---|
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1501497 |
Start date and time: | 2024-08-30 00:43:28 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 8s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://djp.lkmh89074.dns-dynamic.net/ |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal52.phis.win@19/40@18/10 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.186.142, 142.251.173.84, 142.250.181.227, 34.104.35.123, 2.19.126.150, 2.19.126.148, 172.217.18.106, 142.250.186.42, 172.217.16.202, 172.217.16.138, 172.217.23.106, 142.250.74.202, 142.250.185.74, 216.58.206.74, 142.250.185.138, 216.58.212.138, 142.250.186.138, 142.250.185.106, 216.58.206.42, 172.217.18.10, 142.250.184.202, 142.250.186.106, 13.85.23.86, 2.19.126.163, 2.19.126.137, 192.229.221.95, 93.184.221.240, 20.166.126.56, 20.3.187.198, 13.95.31.18, 142.250.184.227
- Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, clientservices.googleapis.com, a767.dspw65.akamai.net, wu.azureedge.net, clients2.google.com, a.media-amazon.com.akamaized.net, ocsp.digicert.com, ocsp.edge.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net, a1994.dscr.akamai.net, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, ctldl.windowsupdate.com.delivery.microsoft.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, download.windowsupdate.com.edgesuite.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, clients.l.google.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: http://djp.lkmh89074.dns-dynamic.net/
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_130766708\LICENSE
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1558 |
Entropy (8bit): | 5.11458514637545 |
Encrypted: | false |
SSDEEP: | 48:OBOCrYJ4rYJVwUCLHDy43HV713XEyMmZ3teTHn:LCrYJ4rYJVwUCHZ3Z13XtdUTH |
MD5: | EE002CB9E51BB8DFA89640A406A1090A |
SHA1: | 49EE3AD535947D8821FFDEB67FFC9BC37D1EBBB2 |
SHA-256: | 3DBD2C90050B652D63656481C3E5871C52261575292DB77D4EA63419F187A55B |
SHA-512: | D1FDCC436B8CA8C68D4DC7077F84F803A535BF2CE31D9EB5D0C466B62D6567B2C59974995060403ED757E92245DB07E70C6BDDBF1C3519FED300CC5B9BF9177C |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_130766708\_metadata\verified_contents.json
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1864 |
Entropy (8bit): | 6.021127689065198 |
Encrypted: | false |
SSDEEP: | 48:p/hUI1atAdI567akUmYWEFw/3+ovGJ4F3jkZUbvzk98g5m7:RnYQI47avYUwvVGJ41jkZIzxgA7 |
MD5: | 68E6B5733E04AB7BF19699A84D8ABBC2 |
SHA1: | 1C11F06CA1AD3ED8116D356AB9164FD1D52B5CF0 |
SHA-256: | F095F969D6711F53F97747371C83D5D634EAEF21C54CB1A6A1CC5B816D633709 |
SHA-512: | 9DC5D824A55C969820D5D1FBB0CA7773361F044AE0C255E7C48D994E16CE169FCEAC3DE180A3A544EBEF32337EA535683115584D592370E5FE7D85C68B86C891 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_130766708\manifest.fingerprint
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 66 |
Entropy (8bit): | 3.9159446964030753 |
Encrypted: | false |
SSDEEP: | 3:Sq5TQRaELVHecsUDBAeHD5k:Sq5gJ+csHej5k |
MD5: | CFB54589424206D0AE6437B5673F498D |
SHA1: | D1EF6314F0F68EFDD0BA8F6CA9E59BFF863B1609 |
SHA-256: | 285AC183C35350B4B77332172413902F83726CA8F53D63859B5DA082FD425A1C |
SHA-512: | 70FDCA4A1E6B7A5FFED3414E2DB74FECA7E0FD17482B8CB30393DFEE20AB9AD2B0B00FF0C590DD0E8D744D0EAD876CE8844519AF66618ED14666BCA56DF2DA21 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_130766708\manifest.json
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 85 |
Entropy (8bit): | 4.4533115571544695 |
Encrypted: | false |
SSDEEP: | 3:rR6TAulhFphifFCmMARWHJqS1tean:F6VlM8aRWpqS1ln |
MD5: | C3419069A1C30140B77045ABA38F12CF |
SHA1: | 11920F0C1E55CADC7D2893D1EEBB268B3459762A |
SHA-256: | DB9A702209807BA039871E542E8356219F342A8D9C9CA34BCD9A86727F4A3A0F |
SHA-512: | C5E95A4E9F5919CB14F4127539C4353A55C5F68062BF6F95E1843B6690CEBED3C93170BADB2412B7FB9F109A620385B0AE74783227D6813F26FF8C29074758A1 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_130766708\sets.json
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 9748 |
Entropy (8bit): | 4.629326694042306 |
Encrypted: | false |
SSDEEP: | 96:Mon4mvC4qX19s1blbw/BNKLcxbdmf56MFJtRTGXvcxN43uP+8qJq:v5C4ql7BkIVmtRTGXvcxBsq |
MD5: | EEA4913A6625BEB838B3E4E79999B627 |
SHA1: | 1B4966850F1B117041407413B70BFA925FD83703 |
SHA-256: | 20EF4DE871ECE3C5F14867C4AE8465999C7A2CC1633525E752320E61F78A373C |
SHA-512: | 31B1429A5FACD6787F6BB45216A4AB1C724C79438C18EBFA8C19CED83149C17783FD492A03197110A75AAF38486A9F58828CA30B58D41E0FE89DFE8BDFC8A004 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_1571165005\Filtering Rules
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 70106 |
Entropy (8bit): | 5.53028222391977 |
Encrypted: | false |
SSDEEP: | 1536:5tl3vXzj/oGmZSxdCqbP5PfgJgCR4Kdst6zf2Lu4semcjS:Vvjj/VmZsdCEBwgC2ist6zf4u4TmcjS |
MD5: | 6274A7426421914C19502CBE0FE28CA0 |
SHA1: | E4D1C702CA1B5497A3ABCDD9495A5D0758F19FFC |
SHA-256: | AE2FD01D2908591E0F39343A5B4A78BAA8E7D6CAC9D78BA79C502FE0A15CE3EE |
SHA-512: | BF1287F502013308CDD906F6E42998C422EF1E272B348E66122DC4A4E471D01333B418F48D1BB2198C72845BDC950612597E179E612AAA1BA6CF8D48FB8F0CF5 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_1571165005\LICENSE.txt
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 24623 |
Entropy (8bit): | 4.588307081140814 |
Encrypted: | false |
SSDEEP: | 384:mva5sf5dXrCN7tnBxpxkepTqzazijFgZk231Py9zD6WApYbm0:mvagXreRnTqzazWgj0v6XqD |
MD5: | D33AAA5246E1CE0A94FA15BA0C407AE2 |
SHA1: | 11D197ACB61361657D638154A9416DC3249EC9FB |
SHA-256: | 1D4FF95CE9C6E21FE4A4FF3B41E7A0DF88638DD449D909A7B46974D3DFAB7311 |
SHA-512: | 98B1B12FF0991FD7A5612141F83F69B86BC5A89DD62FC472EE5971817B7BBB612A034C746C2D81AE58FDF6873129256A89AA8BB7456022246DC4515BAAE2454B |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_1571165005\_metadata\verified_contents.json
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1529 |
Entropy (8bit): | 5.993464908806813 |
Encrypted: | false |
SSDEEP: | 24:pZRj/flTHY0d90kYbKfnatzjeT3V5zkaoXw4eDY1dkF0xfoXPFrsg9dPEQxMd8Lb:p/h40dgbKfatOTlBkakw4eso6fkdDPZ5 |
MD5: | 9595F2EA36EF722F875DE37BAC248BFE |
SHA1: | 1F676CCD0DEE25DFF34C4820A5C5FB1474DE94F4 |
SHA-256: | 5227D3F5D7F4F9014250D9E8FBF833E342A0ECC74C00EEBBD11A02310586FA1E |
SHA-512: | E42D38184438A76B070CF333E6E2CAD2931D83462C8F43078A58CF66896D99882B26033F729994C04ABFE2BB9BE3BA412AD8D50229F6E7007F3F26962D586DEC |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_1571165005\manifest.fingerprint
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 66 |
Entropy (8bit): | 3.84766837175646 |
Encrypted: | false |
SSDEEP: | 3:STcuiIqBWJzBqItVBWBTOexn:SThiIltqItVwlT |
MD5: | 97A21B537A496DDB93F258BE89D5157E |
SHA1: | 640FAB7CC72FF72C1DAE9F94D4D3B45E9D07CCE3 |
SHA-256: | 6FA60CD5A6A1B84DFBB38135B514BB7973ED1C648D47F308848EE67590A5A44C |
SHA-512: | 526F5CB036A773C33A56CC417C048FB739763DE492D0AB9D2AB6ADA502B6C39C2698E07E569C64C8FBF101C2C6C5A88B70BF346DE154810A2072321D29A2B46D |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping600_1571165005\manifest.json
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 114 |
Entropy (8bit): | 4.529806411032915 |
Encrypted: | false |
SSDEEP: | 3:rR6TAulhFphifFHXG7LGMdv5HcDKhtUJKS17eAn:F6VlMZWuMt5SKPS17tn |
MD5: | 4C30F6704085B87B66DCE75A22809259 |
SHA1: | 8953EE0F49416C23CAA82CDD0ACDACC750D1D713 |
SHA-256: | 0152E17E94788E5C3FF124F2906D1D95DC6F8B894CC27EC114B0E73BF6DA54F9 |
SHA-512: | 51E2101BCAD1CB1820C98B93A0FB860E4C46172CA2F4E6627520EB066692B3957C0D979894E6E0190877B8AE3C97CB041782BF5D8D0BB0BF2814D8C9BB7C37F3 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 16 |
Entropy (8bit): | 3.75 |
Encrypted: | false |
SSDEEP: | 3:HLknyY:4nL |
MD5: | E68EF87E1D5438DBD21DB2B591E57BD4 |
SHA1: | D79AD7694E363ACF27D8B97073F6F7F0FE6CE25B |
SHA-256: | 833C17F26FED172DD6BF8C8D4D93080D0C51F398E8BCBEB44403CBCC918390E6 |
SHA-512: | B3B04DF3954767CF85DCD19BB17E7612C1C6380334ABB905D7A0587438F3D9B978AB902D4D90E24548D40DC888A6F797F33EA2BF7EBE53CCBFCF6D28AD29E4E4 |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISEAnwK8JQVDU9BBIFDUg6P0E=?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5480 |
Entropy (8bit): | 7.92073345822459 |
Encrypted: | false |
SSDEEP: | 96:fin2OEi7IyB/fHWC6rdTxDWr24bsXJ2BxQnI2fe/Ll+z/VinHcdbi+i+:q24fB3cdTY24aJ2BdKeB+eCt |
MD5: | C865C99F630C416B84B86B19778960FB |
SHA1: | 342EF2D0EF3E66B67A032068B0E5BDF09FCA7D6B |
SHA-256: | 6B55AA78E7C6D6BDC5B514AD2DD0F25A76C7FE2AEABAE2D0702FD0038B6DD183 |
SHA-512: | 800F9316DE7DBFA27C56D16A291EE651D62440845CA4B7D8EDABE02B5812245343F89910FC5C65D36104A1DB118858C475F83AD9EA636F559421CDCB0DB96F22 |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/captcha/twhhswbk/Captcha_suqcbsnxyl.jpg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1829 |
Entropy (8bit): | 5.11428892886709 |
Encrypted: | false |
SSDEEP: | 24:2G0NUXfVTVKj2HC+gzpYqkQmSMXmng2ayMNrKZCuEJg2zERjDRmgcGAhwZTjMcrA:i2tFov/g542G1mMA4ZIGbFiC4ZbD |
MD5: | 6D68177FA6061598E9509DC4B5BDD08D |
SHA1: | 3BE11C9CF7D3FD0EC940798C3AF6718E7DB15E79 |
SHA-256: | 0A7E3153F44D0E51C73DAD9FA3034A14446BEDBAFC38E477915382DD02269123 |
SHA-512: | 451FD3B4DA3665B51E74514D69A96B0B27364A3245990B85C136D42CA35C983CB94C4BEA9B1DDB35D1E430D91CB5C8D80DC30FC7308882FF9C31653016A974B6 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 19614 |
Entropy (8bit): | 5.470741284974028 |
Encrypted: | false |
SSDEEP: | 384:Tmibpv/V6zelAGEKp4kF2Y2zSbQWjuL43VwLuQEy4X:BN/lfE+FFFVL3V6ExX |
MD5: | 64EE8D01BBFE60D6EFF43818778FB34E |
SHA1: | 51171FBDD28E1A7A61E922E8F0272AF8BC74D37B |
SHA-256: | 877C2C2A2DA0A1A6C0AD0D7AC8071046A1D726E5AB9C63509E3786B8C8EC5042 |
SHA-512: | A653716D49E642E8E98CA70C5ABA0F798C80A584F7953D56DA5116D755E3BD79E3F3D68942118FE3C6C8FA71034CB84214974440D23179078E6DEB16F121D079 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 6591 |
Entropy (8bit): | 4.507635576118732 |
Encrypted: | false |
SSDEEP: | 96:lIWdNmvtGtfstQJdAdVLr6MQQQTtKrRuqeRurMfPulP6tjI:OWuoedtQQQTtKrwqewrMucjI |
MD5: | 3AF434925974AA1AB6CAFB6608DE7BF1 |
SHA1: | 6DA56FB718F2DA51758762AA36C7CF6B31894AE2 |
SHA-256: | EE7E143BB56130C871F5F73A2D1B172F3D7C92FEFBD3986DD9B2C4656BDDE234 |
SHA-512: | 2B17418B93F8ED1307E2C506A34A6C4D589E30128F1E906E574147C10CE05E702DC71028183FE818E53492C74463CCA2B007FC0EF1695A978E5946949E0881FE |
Malicious: | false |
Reputation: | low |
URL: | https://djp.lkmh89074.dns-dynamic.net/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 168705 |
Entropy (8bit): | 5.052671428628102 |
Encrypted: | false |
SSDEEP: | 1536:hnH9/mTR/TwK/w1/6kvF/hHJ/Etz/cT9/JgG/cGzLQtS3HPRmup1SsYCGqgLfNJw:lLQtS3Jmup1KOJzUs10gSGH/m9Eg6J |
MD5: | 7129F677DA939F3180941A6ED120101E |
SHA1: | 3C913031596CA78A3768F4E934B1CC02CE238101 |
SHA-256: | 5AB7636E9F2E3AD10ACC3D81E7EF8BF615504699D42034C041FF9E7C93F178BB |
SHA-512: | 8CA9EC36A28AEBC3F70ED44EE49633DE7FF72600BD3E0CA9677015CAE059843B4E1CA53ADA897158A4F36EB9E445B2C1E593836745A5990139F1C5FE577AD05D |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/AUIClients/AmazonUI-3c913031596ca78a3768f4e934b1cc02ce238101.secure.min._V1_.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5480 |
Entropy (8bit): | 7.92073345822459 |
Encrypted: | false |
SSDEEP: | 96:fin2OEi7IyB/fHWC6rdTxDWr24bsXJ2BxQnI2fe/Ll+z/VinHcdbi+i+:q24fB3cdTY24aJ2BdKeB+eCt |
MD5: | C865C99F630C416B84B86B19778960FB |
SHA1: | 342EF2D0EF3E66B67A032068B0E5BDF09FCA7D6B |
SHA-256: | 6B55AA78E7C6D6BDC5B514AD2DD0F25A76C7FE2AEABAE2D0702FD0038B6DD183 |
SHA-512: | 800F9316DE7DBFA27C56D16A291EE651D62440845CA4B7D8EDABE02B5812245343F89910FC5C65D36104A1DB118858C475F83AD9EA636F559421CDCB0DB96F22 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16972 |
Entropy (8bit): | 7.952827903299268 |
Encrypted: | false |
SSDEEP: | 384:2SfK0lKf4JBHcB1tVbM/ALTCGFrtxseF6SYwmoZWpvlobqBX79O:1I4JQ1XbQSTCortxjF69JTpv++L8 |
MD5: | 7D7A0CFB8EC9EB548C63BFD8F743181C |
SHA1: | 76CAB36D1597E40654951DEC1BE50C289252CAAA |
SHA-256: | 49FF798368F6E4367D03A44AF687D47609CA4608D02B1A099281F88C910CF1AA |
SHA-512: | F0AC58933AD72EBEDDCFBF22BF6FD07C0846E2CA180918D0A1F5973185C86C093865D670C29987B4505DA5A74F6655EE88ED00286C7ED299307D340660588AAA |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 43 |
Entropy (8bit): | 2.9889835948335506 |
Encrypted: | false |
SSDEEP: | 3:CUXPQD/lHpse:1Qvse |
MD5: | E68CC604CAB69BF03B8CD228D940F5EF |
SHA1: | 15C0C62C4C7C917B5DD82A8E1E439211A44B9E98 |
SHA-256: | A3A64AEA2E96EC58A163DDB8D4CF86CF236178ED2D225B8F44154BC1B010DDCE |
SHA-512: | E250128E5EBE1384113C834409BEFB9CD0728B68EF07AB3450CB0A11F64A8AE9B29C48695DB73D0E4BBA0FD976BDCC24BEEA0F326FAD1B4CA072BCCE6E24E3A5 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 19614 |
Entropy (8bit): | 5.470741284974028 |
Encrypted: | false |
SSDEEP: | 384:Tmibpv/V6zelAGEKp4kF2Y2zSbQWjuL43VwLuQEy4X:BN/lfE+FFFVL3V6ExX |
MD5: | 64EE8D01BBFE60D6EFF43818778FB34E |
SHA1: | 51171FBDD28E1A7A61E922E8F0272AF8BC74D37B |
SHA-256: | 877C2C2A2DA0A1A6C0AD0D7AC8071046A1D726E5AB9C63509E3786B8C8EC5042 |
SHA-512: | A653716D49E642E8E98CA70C5ABA0F798C80A584F7953D56DA5116D755E3BD79E3F3D68942118FE3C6C8FA71034CB84214974440D23179078E6DEB16F121D079 |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/AUIClients/ClientSideMetricsAUIJavascript-51171fbdd28e1a7a61e922e8f0272af8bc74d37b.secure.variant-desktop-session-snapshot-keypress.min._V2_.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 17542 |
Entropy (8bit): | 2.247918084411713 |
Encrypted: | false |
SSDEEP: | 192:9dLhJ6/f2dh+xQLeZ10TLwhwOHae6nmErcglsIZS3F:3jaOdhQQu0TLwaOHEr6IZ |
MD5: | CA6619B86C2F6E6068B69BA3AADDB7E4 |
SHA1: | C44A1BB9D14385334EB851FBB0AFB19D961C1EE7 |
SHA-256: | 17D02E2DB6DBEDB95DD449D06868C147AC2C3B5371497BCB9407E75336A99E09 |
SHA-512: | 30F8F8618BFBCD57925411E6860A10B6AD9A60F2A6B08D35C870EA3F4CEC4692596A937FF1457CEFF5847D5DA2B86CEBA0200706625E28C56A2455E6A8C121D3 |
Malicious: | false |
Reputation: | low |
URL: | https://djp.lkmh89074.dns-dynamic.net/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1787 |
Entropy (8bit): | 5.434898978881579 |
Encrypted: | false |
SSDEEP: | 48:H4uA1sGcGMrYhTLzDTZUOmIyiuw4JkkMtA96ZCFYvOe:H4PTLzDTZU9keMi6IY2e |
MD5: | C2EC838FE27F97D3FD0074CE8BCAF9C3 |
SHA1: | 87FEACF794F2465E34A198F1243CFEFDC428BC58 |
SHA-256: | 35CF72B3F65845C32617EB726119BBDD969738B7D62BB760C4381E82CE37AC4A |
SHA-512: | 55013756F0CD2312A7D9499BF110952EBE93865BB6E3F88F870B86DE4517C6907EA3C45E10F6C220A56A59A06B4FF73E38CE6A0AF5B1F49521FCB75D23BD4976 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7210 |
Entropy (8bit): | 5.342079982931804 |
Encrypted: | false |
SSDEEP: | 192:wSzRpODZ2cOVzU+onhfDPUtI7D5wfxBkChhUSXCzrK5Xo2TZmfWwBNUr1jvNx5Pp:J1pjc4QJnhbctI7D5wfxBkChhUSXCzrs |
MD5: | 1C399AD9886CAB69575E1E5EE15C61A1 |
SHA1: | 5B4A4FAE777B5A20A6751361F0C64B9D590E37BA |
SHA-256: | A538A2B295512C2A3B74F63E74047DB79140733DA941FB0FCA2B95A1DFDADA37 |
SHA-512: | 14520A8D7AC1C28FA58F4D9392CCB7C720C50967062ED8CA1D47BDA93089C2C4F375689F8A3E71923098938BE8C2851396020D9D3976FFE101507125A02BFF51 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7210 |
Entropy (8bit): | 5.342079982931804 |
Encrypted: | false |
SSDEEP: | 192:wSzRpODZ2cOVzU+onhfDPUtI7D5wfxBkChhUSXCzrK5Xo2TZmfWwBNUr1jvNx5Pp:J1pjc4QJnhbctI7D5wfxBkChhUSXCzrs |
MD5: | 1C399AD9886CAB69575E1E5EE15C61A1 |
SHA1: | 5B4A4FAE777B5A20A6751361F0C64B9D590E37BA |
SHA-256: | A538A2B295512C2A3B74F63E74047DB79140733DA941FB0FCA2B95A1DFDADA37 |
SHA-512: | 14520A8D7AC1C28FA58F4D9392CCB7C720C50967062ED8CA1D47BDA93089C2C4F375689F8A3E71923098938BE8C2851396020D9D3976FFE101507125A02BFF51 |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/csminstrumentation/ue-base-1c399ad9886cab69575e1e5ee15c61a1._V313498596_.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 16972 |
Entropy (8bit): | 7.952827903299268 |
Encrypted: | false |
SSDEEP: | 384:2SfK0lKf4JBHcB1tVbM/ALTCGFrtxseF6SYwmoZWpvlobqBX79O:1I4JQ1XbQSTCortxjF69JTpv++L8 |
MD5: | 7D7A0CFB8EC9EB548C63BFD8F743181C |
SHA1: | 76CAB36D1597E40654951DEC1BE50C289252CAAA |
SHA-256: | 49FF798368F6E4367D03A44AF687D47609CA4608D02B1A099281F88C910CF1AA |
SHA-512: | F0AC58933AD72EBEDDCFBF22BF6FD07C0846E2CA180918D0A1F5973185C86C093865D670C29987B4505DA5A74F6655EE88ED00286C7ED299307D340660588AAA |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/amazonui/sprites/aui_sprite_0007-1x._V383827579_.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1787 |
Entropy (8bit): | 5.434898978881579 |
Encrypted: | false |
SSDEEP: | 48:H4uA1sGcGMrYhTLzDTZUOmIyiuw4JkkMtA96ZCFYvOe:H4PTLzDTZU9keMi6IY2e |
MD5: | C2EC838FE27F97D3FD0074CE8BCAF9C3 |
SHA1: | 87FEACF794F2465E34A198F1243CFEFDC428BC58 |
SHA-256: | 35CF72B3F65845C32617EB726119BBDD969738B7D62BB760C4381E82CE37AC4A |
SHA-512: | 55013756F0CD2312A7D9499BF110952EBE93865BB6E3F88F870B86DE4517C6907EA3C45E10F6C220A56A59A06B4FF73E38CE6A0AF5B1F49521FCB75D23BD4976 |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/csminstrumentation/csm-captcha-instrumentation.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1829 |
Entropy (8bit): | 5.11428892886709 |
Encrypted: | false |
SSDEEP: | 24:2G0NUXfVTVKj2HC+gzpYqkQmSMXmng2ayMNrKZCuEJg2zERjDRmgcGAhwZTjMcrA:i2tFov/g542G1mMA4ZIGbFiC4ZbD |
MD5: | 6D68177FA6061598E9509DC4B5BDD08D |
SHA1: | 3BE11C9CF7D3FD0EC940798C3AF6718E7DB15E79 |
SHA-256: | 0A7E3153F44D0E51C73DAD9FA3034A14446BEDBAFC38E477915382DD02269123 |
SHA-512: | 451FD3B4DA3665B51E74514D69A96B0B27364A3245990B85C136D42CA35C983CB94C4BEA9B1DDB35D1E430D91CB5C8D80DC30FC7308882FF9C31653016A974B6 |
Malicious: | false |
Reputation: | low |
URL: | https://images-na.ssl-images-amazon.com/images/G/01/csminstrumentation/rd-script-6d68177fa6061598e9509dc4b5bdd08d.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 43 |
Entropy (8bit): | 2.9889835948335506 |
Encrypted: | false |
SSDEEP: | 3:CUXPQD/lHpse:1Qvse |
MD5: | E68CC604CAB69BF03B8CD228D940F5EF |
SHA1: | 15C0C62C4C7C917B5DD82A8E1E439211A44B9E98 |
SHA-256: | A3A64AEA2E96EC58A163DDB8D4CF86CF236178ED2D225B8F44154BC1B010DDCE |
SHA-512: | E250128E5EBE1384113C834409BEFB9CD0728B68EF07AB3450CB0A11F64A8AE9B29C48695DB73D0E4BBA0FD976BDCC24BEEA0F326FAD1B4CA072BCCE6E24E3A5 |
Malicious: | false |
Reputation: | low |
URL: | https://fls-na.amazon.com/1/oc-csi/1/OP/requestId=TN9P2Q51EKV14VM85988&js=1 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 17542 |
Entropy (8bit): | 2.247918084411713 |
Encrypted: | false |
SSDEEP: | 192:9dLhJ6/f2dh+xQLeZ10TLwhwOHae6nmErcglsIZS3F:3jaOdhQQu0TLwaOHEr6IZ |
MD5: | CA6619B86C2F6E6068B69BA3AADDB7E4 |
SHA1: | C44A1BB9D14385334EB851FBB0AFB19D961C1EE7 |
SHA-256: | 17D02E2DB6DBEDB95DD449D06868C147AC2C3B5371497BCB9407E75336A99E09 |
SHA-512: | 30F8F8618BFBCD57925411E6860A10B6AD9A60F2A6B08D35C870EA3F4CEC4692596A937FF1457CEFF5847D5DA2B86CEBA0200706625E28C56A2455E6A8C121D3 |
Malicious: | false |
Reputation: | low |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Aug 30, 2024 00:44:12.943321943 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Aug 30, 2024 00:44:22.598691940 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Aug 30, 2024 00:44:23.733292103 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:23.733340025 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:23.733443975 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:23.733730078 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:23.733742952 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.211780071 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.212152004 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.212186098 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.213172913 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.213238001 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.214452982 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.214529991 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.214668036 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.214682102 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.257289886 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.546458960 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546529055 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546555042 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546591043 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546617031 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546639919 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.546669960 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546689034 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.546710968 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.546715021 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546729088 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:24.546770096 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.557946920 CEST | 49735 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:24.557962894 CEST | 443 | 49735 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:26.128168106 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:26.128196001 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:26.128449917 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:26.128792048 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:26.128803968 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:26.167251110 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:26.167289019 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.167382956 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:26.167926073 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:26.167941093 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.359216928 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:26.359226942 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.359294891 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:26.360668898 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:26.360678911 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.767143965 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:26.767496109 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:26.767510891 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:26.768528938 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:26.768580914 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:26.871850014 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.872107029 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:26.872132063 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.873189926 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:26.873250008 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.046587944 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.047229052 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.047239065 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.048746109 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.048825979 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.049896955 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:27.050096989 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:27.050837994 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.050944090 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.053297043 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.053464890 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.053543091 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.053560019 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.054147959 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.054157972 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.096007109 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.096009016 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.096501112 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:27.096513987 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:27.130392075 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:27.130414963 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:27.130580902 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:27.135010004 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:27.135020971 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:27.136751890 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:27.164030075 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.164140940 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.164361954 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.193454981 CEST | 49746 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:27.193468094 CEST | 443 | 49746 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.238292933 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.238917112 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.238995075 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.239012957 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.240583897 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.240629911 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.241741896 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:27.241764069 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:27.241818905 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:27.242428064 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:27.242439985 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:27.242917061 CEST | 49742 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.242925882 CEST | 443 | 49742 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.352543116 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.352588892 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.352890968 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.353266001 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.353277922 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.356395006 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.356405020 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.356700897 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.357213974 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.357225895 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.358685017 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.358721018 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.358961105 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.359060049 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:27.359075069 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:27.779721975 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:27.779808998 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:27.929903984 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:27.979837894 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.064328909 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.065928936 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.076726913 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.115969896 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.116048098 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.118973017 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.191997051 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.192032099 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.192392111 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.202037096 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.202070951 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.202729940 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.202740908 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203162909 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.203175068 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203223944 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203286886 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.203358889 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.203363895 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203670979 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203850985 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203866959 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.203933001 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.205415964 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.205501080 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.206062078 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.206161976 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.208167076 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.208250999 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.212742090 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.212810040 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.213705063 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.213715076 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.214041948 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.214140892 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.214184046 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.214190006 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.238807917 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.260493040 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.260499001 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.266834974 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.266949892 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.324224949 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.324291945 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.324393988 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.367115021 CEST | 49749 | 443 | 192.168.2.4 | 54.173.65.240 |
Aug 30, 2024 00:44:28.367151976 CEST | 443 | 49749 | 54.173.65.240 | 192.168.2.4 |
Aug 30, 2024 00:44:28.397721052 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.397809982 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.397886992 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.397888899 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.397943020 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.398435116 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.398473024 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.398575068 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.398586988 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.398829937 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.398885012 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.400300980 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400329113 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400336981 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400366068 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400373936 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400383949 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400413990 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.400424004 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.400453091 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.400461912 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.402796030 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.402862072 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.402941942 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.425638914 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.447902918 CEST | 49752 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.447932959 CEST | 443 | 49752 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.448667049 CEST | 49751 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.448674917 CEST | 443 | 49751 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.454443932 CEST | 49753 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.454457045 CEST | 443 | 49753 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.472505093 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.629933119 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.630002975 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.630064011 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.630292892 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.630316973 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.630327940 CEST | 49748 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.630333900 CEST | 443 | 49748 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.670825005 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.670850039 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.670914888 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.671313047 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:28.671324015 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:28.956615925 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.956670046 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:28.957178116 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.957830906 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:28.957847118 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.308928013 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.309025049 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:29.330312967 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:29.330329895 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.330583096 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.333046913 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:29.376501083 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.586005926 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.586074114 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.586194992 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:29.587044001 CEST | 49755 | 443 | 192.168.2.4 | 184.28.90.27 |
Aug 30, 2024 00:44:29.587054968 CEST | 443 | 49755 | 184.28.90.27 | 192.168.2.4 |
Aug 30, 2024 00:44:29.636327028 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:29.636363029 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:29.636451960 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:29.638624907 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:29.638638973 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:29.643165112 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.643198967 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.643292904 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.643661022 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.643676043 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.668090105 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.675535917 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.675570011 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.676018953 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.684870958 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.684998035 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.686861992 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.732502937 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.929910898 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.931953907 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.932056904 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.932080984 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.932126999 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.933039904 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.933109999 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:29.934998989 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.938203096 CEST | 49758 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:29.938221931 CEST | 443 | 49758 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.099039078 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.099739075 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.099764109 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.100229979 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.100714922 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.100795031 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.101495028 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.148513079 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.290824890 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.290896893 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.290944099 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.290981054 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291021109 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291023970 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.291047096 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291065931 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.291122913 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.291127920 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291505098 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291544914 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291562080 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.291567087 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.291660070 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.291665077 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.295645952 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.295696020 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.295701981 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.340046883 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.348191977 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.354255915 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.354275942 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.354674101 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.355351925 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.355422020 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.355717897 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.377588987 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.377701044 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.377746105 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.378317118 CEST | 49759 | 443 | 192.168.2.4 | 172.66.45.14 |
Aug 30, 2024 00:44:30.378333092 CEST | 443 | 49759 | 172.66.45.14 | 192.168.2.4 |
Aug 30, 2024 00:44:30.396503925 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.596532106 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.605936050 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.605963945 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.606049061 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.606067896 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.606133938 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.650634050 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:30.650682926 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.650795937 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:30.651292086 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:30.651309013 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.683554888 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.683635950 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.683644056 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.683728933 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.689575911 CEST | 49760 | 443 | 192.168.2.4 | 18.239.85.223 |
Aug 30, 2024 00:44:30.689589977 CEST | 443 | 49760 | 18.239.85.223 | 192.168.2.4 |
Aug 30, 2024 00:44:30.823782921 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:30.823822021 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:30.823913097 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:30.824183941 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:30.824198008 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.157610893 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.179338932 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.179366112 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.179812908 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.180545092 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.180613995 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.181025982 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.181113958 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.181137085 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.181185961 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.181191921 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.181366920 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.181396008 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.301671028 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.313396931 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.313427925 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.314519882 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.314590931 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.315165997 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.315236092 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.315515041 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.315524101 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.364747047 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.399637938 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.399770021 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.399813890 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.400439978 CEST | 49761 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:31.400456905 CEST | 443 | 49761 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493701935 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493760109 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493798971 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493819952 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493854046 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493860006 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.493881941 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.493900061 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.493912935 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.494522095 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.494620085 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.494663954 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.494671106 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.496112108 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.496145010 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.496151924 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.500864029 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.500905037 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.500912905 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.552268028 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.581754923 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.581890106 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:31.581927061 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.582927942 CEST | 49762 | 443 | 192.168.2.4 | 172.66.46.242 |
Aug 30, 2024 00:44:31.582947016 CEST | 443 | 49762 | 172.66.46.242 | 192.168.2.4 |
Aug 30, 2024 00:44:36.675179958 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:36.675240040 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:36.675787926 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:36.710479021 CEST | 49741 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:44:36.710501909 CEST | 443 | 49741 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:44:39.563832998 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:39.563891888 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:39.564001083 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:39.571579933 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:39.571593046 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.059225082 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.080853939 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:40.080883026 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.081324100 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.081778049 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:40.081835985 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.082731009 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:40.128498077 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.218943119 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.219016075 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:40.219094992 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:40.219532967 CEST | 49768 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:40.219548941 CEST | 443 | 49768 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:54.935297012 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:54.935333014 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:54.935436964 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:54.935982943 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:54.936002016 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.450866938 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.451239109 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:55.451262951 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.451606035 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.452234983 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:55.452295065 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.452614069 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:55.496505976 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.579344988 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.579500914 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:44:55.579555988 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:55.580086946 CEST | 49770 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:44:55.580101967 CEST | 443 | 49770 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:12.684681892 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:12.684741020 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:12.684875965 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:12.685266018 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:12.685282946 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.179414988 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.179970980 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:13.179996014 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.180340052 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.180938959 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:13.180999994 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.181479931 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:13.228490114 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.303811073 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.303961039 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:13.304044962 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:13.305815935 CEST | 49771 | 443 | 192.168.2.4 | 34.206.30.223 |
Aug 30, 2024 00:45:13.305836916 CEST | 443 | 49771 | 34.206.30.223 | 192.168.2.4 |
Aug 30, 2024 00:45:24.328097105 CEST | 56188 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:24.334292889 CEST | 53 | 56188 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:24.334357977 CEST | 56188 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:24.334403992 CEST | 56188 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:24.340681076 CEST | 53 | 56188 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:24.798996925 CEST | 53 | 56188 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:24.853724003 CEST | 56188 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:24.860896111 CEST | 53 | 56188 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:24.861022949 CEST | 56188 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:26.177983999 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:26.178023100 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.178093910 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:26.178349972 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:26.178364038 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.808656931 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.808913946 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:26.808943033 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.809262991 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.809629917 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:26.809689999 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:26.864552975 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:29.974059105 CEST | 49723 | 80 | 192.168.2.4 | 199.232.210.172 |
Aug 30, 2024 00:45:29.974109888 CEST | 49724 | 80 | 192.168.2.4 | 199.232.210.172 |
Aug 30, 2024 00:45:29.982197046 CEST | 80 | 49723 | 199.232.210.172 | 192.168.2.4 |
Aug 30, 2024 00:45:29.982213020 CEST | 80 | 49724 | 199.232.210.172 | 192.168.2.4 |
Aug 30, 2024 00:45:29.982264042 CEST | 49723 | 80 | 192.168.2.4 | 199.232.210.172 |
Aug 30, 2024 00:45:29.982280970 CEST | 49724 | 80 | 192.168.2.4 | 199.232.210.172 |
Aug 30, 2024 00:45:30.287345886 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:30.287390947 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:30.287518024 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:30.288013935 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:30.288031101 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.027373075 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.028103113 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:31.028130054 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.028506041 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.028932095 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:31.029000044 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.029167891 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:31.072506905 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.204710007 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.204790115 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:31.204843044 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:31.205172062 CEST | 56191 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:31.205190897 CEST | 443 | 56191 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:36.753870964 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:36.753942013 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:36.753994942 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:39.092231035 CEST | 56190 | 443 | 192.168.2.4 | 142.250.186.132 |
Aug 30, 2024 00:45:39.092259884 CEST | 443 | 56190 | 142.250.186.132 | 192.168.2.4 |
Aug 30, 2024 00:45:47.855288029 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:47.855338097 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:47.855618954 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:47.856117010 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:47.856132984 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.357824087 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.358139992 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.358166933 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.358519077 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.358972073 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.358972073 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.358987093 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.359035969 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.411220074 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.479160070 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.479249001 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.479434967 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.479659081 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.479659081 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Aug 30, 2024 00:45:48.479679108 CEST | 443 | 56194 | 52.73.181.187 | 192.168.2.4 |
Aug 30, 2024 00:45:48.479796886 CEST | 56194 | 443 | 192.168.2.4 | 52.73.181.187 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Aug 30, 2024 00:44:22.285415888 CEST | 53 | 55831 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:22.287930965 CEST | 53 | 50381 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:23.398138046 CEST | 53 | 51987 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:23.575532913 CEST | 49156 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:23.575722933 CEST | 62007 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:23.693203926 CEST | 53 | 49156 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:23.693485975 CEST | 53 | 62007 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:23.700256109 CEST | 61261 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:23.700412989 CEST | 55074 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:23.728763103 CEST | 53 | 61261 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:23.732523918 CEST | 53 | 55074 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:24.592834949 CEST | 64383 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:24.593033075 CEST | 64706 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.114708900 CEST | 65323 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.118222952 CEST | 63154 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.122970104 CEST | 53 | 65323 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.126921892 CEST | 53 | 63154 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.155950069 CEST | 64196 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.156526089 CEST | 62727 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.164905071 CEST | 53 | 64196 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.166263103 CEST | 53 | 62727 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.345624924 CEST | 61545 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.346220970 CEST | 49488 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:26.357837915 CEST | 53 | 61545 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.357991934 CEST | 53 | 49488 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:26.364967108 CEST | 53 | 62367 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:27.226186991 CEST | 55353 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:27.227118969 CEST | 53539 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:27.235148907 CEST | 53 | 55353 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:27.254019976 CEST | 53 | 53539 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:30.788049936 CEST | 59925 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:30.788499117 CEST | 52602 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:44:30.821619987 CEST | 53 | 52602 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:30.823326111 CEST | 53 | 59925 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:40.487376928 CEST | 53 | 54724 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:44:41.576375008 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Aug 30, 2024 00:44:59.597629070 CEST | 53 | 49328 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:21.924179077 CEST | 53 | 63082 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:22.364965916 CEST | 53 | 57299 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:24.326575994 CEST | 53 | 63074 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:30.274404049 CEST | 51706 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:30.274842978 CEST | 54157 | 53 | 192.168.2.4 | 1.1.1.1 |
Aug 30, 2024 00:45:30.283454895 CEST | 53 | 51706 | 1.1.1.1 | 192.168.2.4 |
Aug 30, 2024 00:45:30.286669970 CEST | 53 | 54157 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Aug 30, 2024 00:44:27.254179001 CEST | 192.168.2.4 | 1.1.1.1 | c27d | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Aug 30, 2024 00:44:23.575532913 CEST | 192.168.2.4 | 1.1.1.1 | 0xf62e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:23.575722933 CEST | 192.168.2.4 | 1.1.1.1 | 0x78da | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:23.700256109 CEST | 192.168.2.4 | 1.1.1.1 | 0xfda9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:23.700412989 CEST | 192.168.2.4 | 1.1.1.1 | 0xd359 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:24.592834949 CEST | 192.168.2.4 | 1.1.1.1 | 0x83ba | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:24.593033075 CEST | 192.168.2.4 | 1.1.1.1 | 0x854e | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.114708900 CEST | 192.168.2.4 | 1.1.1.1 | 0xbf73 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.118222952 CEST | 192.168.2.4 | 1.1.1.1 | 0x8783 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.155950069 CEST | 192.168.2.4 | 1.1.1.1 | 0xf8cd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.156526089 CEST | 192.168.2.4 | 1.1.1.1 | 0x4c69 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.345624924 CEST | 192.168.2.4 | 1.1.1.1 | 0x649c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:26.346220970 CEST | 192.168.2.4 | 1.1.1.1 | 0xeb92 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:27.226186991 CEST | 192.168.2.4 | 1.1.1.1 | 0x440f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:27.227118969 CEST | 192.168.2.4 | 1.1.1.1 | 0x1889 | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:44:30.788049936 CEST | 192.168.2.4 | 1.1.1.1 | 0xde6b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:44:30.788499117 CEST | 192.168.2.4 | 1.1.1.1 | 0x918a | Standard query (0) | 65 | IN (0x0001) | false | |
Aug 30, 2024 00:45:30.274404049 CEST | 192.168.2.4 | 1.1.1.1 | 0x2191 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Aug 30, 2024 00:45:30.274842978 CEST | 192.168.2.4 | 1.1.1.1 | 0x1e32 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Aug 30, 2024 00:44:23.693203926 CEST | 1.1.1.1 | 192.168.2.4 | 0xf62e | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.693203926 CEST | 1.1.1.1 | 192.168.2.4 | 0xf62e | No error (0) | 172.66.45.14 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.693203926 CEST | 1.1.1.1 | 192.168.2.4 | 0xf62e | No error (0) | 172.66.46.242 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.693485975 CEST | 1.1.1.1 | 192.168.2.4 | 0x78da | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.693485975 CEST | 1.1.1.1 | 192.168.2.4 | 0x78da | No error (0) | 65 | IN (0x0001) | false | |||
Aug 30, 2024 00:44:23.728763103 CEST | 1.1.1.1 | 192.168.2.4 | 0xfda9 | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.728763103 CEST | 1.1.1.1 | 192.168.2.4 | 0xfda9 | No error (0) | 172.66.45.14 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.728763103 CEST | 1.1.1.1 | 192.168.2.4 | 0xfda9 | No error (0) | 172.66.46.242 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.732523918 CEST | 1.1.1.1 | 192.168.2.4 | 0xd359 | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:23.732523918 CEST | 1.1.1.1 | 192.168.2.4 | 0xd359 | No error (0) | 65 | IN (0x0001) | false | |||
Aug 30, 2024 00:44:24.601716995 CEST | 1.1.1.1 | 192.168.2.4 | 0x83ba | No error (0) | m.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601716995 CEST | 1.1.1.1 | 192.168.2.4 | 0x83ba | No error (0) | tp.c47710ee9-frontier.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601716995 CEST | 1.1.1.1 | 192.168.2.4 | 0x83ba | No error (0) | a.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601716995 CEST | 1.1.1.1 | 192.168.2.4 | 0x83ba | No error (0) | a.media-amazon.com.akamaized.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601761103 CEST | 1.1.1.1 | 192.168.2.4 | 0x854e | No error (0) | m.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601761103 CEST | 1.1.1.1 | 192.168.2.4 | 0x854e | No error (0) | tp.c47710ee9-frontier.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601761103 CEST | 1.1.1.1 | 192.168.2.4 | 0x854e | No error (0) | a.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:24.601761103 CEST | 1.1.1.1 | 192.168.2.4 | 0x854e | No error (0) | a.media-amazon.com.akamaized.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.122970104 CEST | 1.1.1.1 | 192.168.2.4 | 0xbf73 | No error (0) | 142.250.186.132 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.126921892 CEST | 1.1.1.1 | 192.168.2.4 | 0x8783 | No error (0) | 65 | IN (0x0001) | false | |||
Aug 30, 2024 00:44:26.164905071 CEST | 1.1.1.1 | 192.168.2.4 | 0xf8cd | No error (0) | m.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.164905071 CEST | 1.1.1.1 | 192.168.2.4 | 0xf8cd | No error (0) | tp.c47710ee9-frontier.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.164905071 CEST | 1.1.1.1 | 192.168.2.4 | 0xf8cd | No error (0) | c.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.164905071 CEST | 1.1.1.1 | 192.168.2.4 | 0xf8cd | No error (0) | 18.239.85.223 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.166263103 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c69 | No error (0) | m.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.166263103 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c69 | No error (0) | tp.c47710ee9-frontier.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.166263103 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c69 | No error (0) | f.media-amazon.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.166263103 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c69 | No error (0) | media.amazon.map.fastly.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 34.206.30.223 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 35.153.216.77 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 54.243.65.89 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 54.85.233.125 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 35.153.212.211 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 3.217.134.199 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 3.93.124.118 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357837915 CEST | 1.1.1.1 | 192.168.2.4 | 0x649c | No error (0) | 18.214.38.181 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357991934 CEST | 1.1.1.1 | 192.168.2.4 | 0xeb92 | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:26.357991934 CEST | 1.1.1.1 | 192.168.2.4 | 0xeb92 | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 54.173.65.240 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 34.227.218.6 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 3.210.119.94 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 18.210.249.71 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 52.20.136.121 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 54.209.77.96 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 34.200.99.30 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.235148907 CEST | 1.1.1.1 | 192.168.2.4 | 0x440f | No error (0) | 3.223.18.9 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.254019976 CEST | 1.1.1.1 | 192.168.2.4 | 0x1889 | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:27.254019976 CEST | 1.1.1.1 | 192.168.2.4 | 0x1889 | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:30.821619987 CEST | 1.1.1.1 | 192.168.2.4 | 0x918a | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:30.821619987 CEST | 1.1.1.1 | 192.168.2.4 | 0x918a | No error (0) | 65 | IN (0x0001) | false | |||
Aug 30, 2024 00:44:30.823326111 CEST | 1.1.1.1 | 192.168.2.4 | 0xde6b | No error (0) | page-timelkmh89074.pages.dev | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:30.823326111 CEST | 1.1.1.1 | 192.168.2.4 | 0xde6b | No error (0) | 172.66.46.242 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:30.823326111 CEST | 1.1.1.1 | 192.168.2.4 | 0xde6b | No error (0) | 172.66.45.14 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:37.310269117 CEST | 1.1.1.1 | 192.168.2.4 | 0x190c | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:37.310269117 CEST | 1.1.1.1 | 192.168.2.4 | 0x190c | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:50.875201941 CEST | 1.1.1.1 | 192.168.2.4 | 0x3e1d | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:44:50.875201941 CEST | 1.1.1.1 | 192.168.2.4 | 0x3e1d | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:14.718784094 CEST | 1.1.1.1 | 192.168.2.4 | 0x8007 | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:14.718784094 CEST | 1.1.1.1 | 192.168.2.4 | 0x8007 | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 52.73.181.187 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 18.215.40.156 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 3.224.215.1 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 52.0.97.78 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 3.224.20.181 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 44.198.11.160 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 34.238.2.232 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.283454895 CEST | 1.1.1.1 | 192.168.2.4 | 0x2191 | No error (0) | 107.23.207.187 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.286669970 CEST | 1.1.1.1 | 192.168.2.4 | 0x1e32 | No error (0) | gateway.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:30.286669970 CEST | 1.1.1.1 | 192.168.2.4 | 0x1e32 | No error (0) | endpoint.prod.us-east-1.forester.a2z.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:38.322952986 CEST | 1.1.1.1 | 192.168.2.4 | 0x8862 | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false | ||
Aug 30, 2024 00:45:38.322952986 CEST | 1.1.1.1 | 192.168.2.4 | 0x8862 | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 172.66.45.14 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:24 UTC | 672 | OUT | |
2024-08-29 22:44:24 UTC | 931 | IN | |
2024-08-29 22:44:24 UTC | 438 | IN | |
2024-08-29 22:44:24 UTC | 1369 | IN | |
2024-08-29 22:44:24 UTC | 1369 | IN | |
2024-08-29 22:44:24 UTC | 1369 | IN | |
2024-08-29 22:44:24 UTC | 1369 | IN | |
2024-08-29 22:44:24 UTC | 685 | IN | |
2024-08-29 22:44:24 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49742 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:27 UTC | 394 | OUT | |
2024-08-29 22:44:27 UTC | 744 | IN | |
2024-08-29 22:44:27 UTC | 5480 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49746 | 34.206.30.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:27 UTC | 639 | OUT | |
2024-08-29 22:44:27 UTC | 176 | IN | |
2024-08-29 22:44:27 UTC | 43 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49749 | 54.173.65.240 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:28 UTC | 390 | OUT | |
2024-08-29 22:44:28 UTC | 176 | IN | |
2024-08-29 22:44:28 UTC | 43 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49752 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:28 UTC | 420 | OUT | |
2024-08-29 22:44:28 UTC | 934 | IN | |
2024-08-29 22:44:28 UTC | 1787 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49751 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:28 UTC | 431 | OUT | |
2024-08-29 22:44:28 UTC | 956 | IN | |
2024-08-29 22:44:28 UTC | 1829 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49753 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:28 UTC | 419 | OUT | |
2024-08-29 22:44:28 UTC | 852 | IN | |
2024-08-29 22:44:28 UTC | 15532 | IN | |
2024-08-29 22:44:28 UTC | 458 | IN | |
2024-08-29 22:44:28 UTC | 982 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49748 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:28 UTC | 161 | OUT | |
2024-08-29 22:44:28 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49755 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:29 UTC | 239 | OUT | |
2024-08-29 22:44:29 UTC | 515 | IN | |
2024-08-29 22:44:29 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49758 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:29 UTC | 442 | OUT | |
2024-08-29 22:44:29 UTC | 959 | IN | |
2024-08-29 22:44:29 UTC | 7210 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49759 | 172.66.45.14 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:30 UTC | 651 | OUT | |
2024-08-29 22:44:30 UTC | 1073 | IN | |
2024-08-29 22:44:30 UTC | 296 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN | |
2024-08-29 22:44:30 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.4 | 49760 | 18.239.85.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:30 UTC | 510 | OUT | |
2024-08-29 22:44:30 UTC | 1055 | IN | |
2024-08-29 22:44:30 UTC | 16384 | IN | |
2024-08-29 22:44:30 UTC | 3230 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.4 | 49761 | 34.206.30.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:31 UTC | 653 | OUT | |
2024-08-29 22:44:31 UTC | 16384 | OUT | |
2024-08-29 22:44:31 UTC | 4317 | OUT | |
2024-08-29 22:44:31 UTC | 288 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.4 | 49762 | 172.66.46.242 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:31 UTC | 401 | OUT | |
2024-08-29 22:44:31 UTC | 1071 | IN | |
2024-08-29 22:44:31 UTC | 298 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN | |
2024-08-29 22:44:31 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.4 | 49768 | 34.206.30.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:40 UTC | 651 | OUT | |
2024-08-29 22:44:40 UTC | 271 | OUT | |
2024-08-29 22:44:40 UTC | 288 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.4 | 49770 | 34.206.30.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:44:55 UTC | 651 | OUT | |
2024-08-29 22:44:55 UTC | 222 | OUT | |
2024-08-29 22:44:55 UTC | 288 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.4 | 49771 | 34.206.30.223 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:45:13 UTC | 651 | OUT | |
2024-08-29 22:45:13 UTC | 222 | OUT | |
2024-08-29 22:45:13 UTC | 288 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
17 | 192.168.2.4 | 56191 | 52.73.181.187 | 443 | 5788 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:45:31 UTC | 651 | OUT | |
2024-08-29 22:45:31 UTC | 222 | OUT | |
2024-08-29 22:45:31 UTC | 288 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
18 | 192.168.2.4 | 56194 | 52.73.181.187 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-08-29 22:45:48 UTC | 651 | OUT | |
2024-08-29 22:45:48 UTC | 170 | OUT | |
2024-08-29 22:45:48 UTC | 288 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:44:17 |
Start date: | 29/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:44:20 |
Start date: | 29/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:44:22 |
Start date: | 29/08/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |