Windows
Analysis Report
https://show.zohopublic.eu/publish/2mykh75bc2eca9dba4b7da921f6c319a2fd91
Overview
General Information
Detection
Score: | 0 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 4908 cmdline:
C:\Program Files\Goo gle\Chrome \Applicati on\chrome. exe" --sta rt-maximiz ed "about: blank MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5576 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =1924 --fi eld-trial- handle=200 4,i,183488 1613337464 8230,17903 8170454725 53705,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6448 cmdline:
C:\Program Files\Goo gle\Chrome \Applicati on\chrome. exe" "http s://show.z ohopublic. eu/publish /2mykh75bc 2eca9dba4b 7da921f6c3 19a2fd91 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
accounts.google.com | 74.125.138.84 | true | false | high | |
zs-lc2-26-h2.zoho.eu | 185.230.212.121 | true | false | high | |
zohostatic.eu | 185.230.214.31 | true | false | unknown | |
zs-lc2-26-H2.zoho.eu | 185.230.212.121 | true | false | high | |
www.google.com | 142.250.105.99 | true | false | high | |
h2-stratus.zohocdn.com | 204.141.43.48 | true | false | unknown | |
clients.l.google.com | 172.253.124.101 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
windowsupdatebg.s.llnwi.net | 69.164.42.0 | true | false | unknown | |
show.zohopublic.eu | unknown | unknown | false | high | |
clients2.google.com | unknown | unknown | false | high | |
img.zohostatic.eu | unknown | unknown | false | unknown | |
static.zohocdn.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high | ||
false |
| unknown | |
false |
| unknown | |
false | high | ||
false | high | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
172.253.124.101 | clients.l.google.com | United States | 15169 | GOOGLEUS | false | |
185.230.212.121 | zs-lc2-26-h2.zoho.eu | Netherlands | 41913 | COMPUTERLINEComputerlineSchlierbachSwitzerlandCH | false | |
142.250.105.99 | www.google.com | United States | 15169 | GOOGLEUS | false | |
185.230.212.112 | unknown | Netherlands | 41913 | COMPUTERLINEComputerlineSchlierbachSwitzerlandCH | false | |
204.141.43.48 | h2-stratus.zohocdn.com | United States | 2639 | ZOHO-ASUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
74.125.138.84 | accounts.google.com | United States | 15169 | GOOGLEUS | false | |
185.230.214.31 | zohostatic.eu | Netherlands | 41913 | COMPUTERLINEComputerlineSchlierbachSwitzerlandCH | false |
IP |
---|
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 39.0.0 Ruby |
Analysis ID: | 1381258 |
Start date and time: | 2024-01-25 18:59:03 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 4s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://show.zohopublic.eu/publish/2mykh75bc2eca9dba4b7da921f6c319a2fd91 |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean0.win@16/5@16/10 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 64.233.185.94, 34.104.35.123, 20.114.59.183, 23.40.205.73, 23.40.205.19, 23.40.205.75, 23.40.205.18, 23.40.205.26, 23.40.205.83, 23.40.205.35, 23.40.205.32, 23.40.205.16, 192.229.211.108, 13.85.23.206, 72.21.81.240, 20.242.39.171, 96.7.245.89, 96.7.245.17, 172.253.124.94, 23.40.205.65, 23.40.205.43, 23.40.205.80, 23.40.205.67, 23.40.205.17, 23.40.205.41
- Excluded domains from analysis (whitelisted): fs.microsoft.com, slscr.update.microsoft.com, wu.ec.azureedge.net, clientservices.googleapis.com, ctldl.windowsupdate.com, a767.dspw65.akamai.net, wu-bg-shim.trafficmanager.net, wu.azureedge.net, download.windowsupdate.com.edgesuite.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, ocsp.digicert.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, glb.sls.prod.dcat.dsp.trafficmanager.net
- Not all processes where analyzed, report is missing behavior information
- VT rate limit hit for: https://show.zohopublic.eu/publish/2mykh75bc2eca9dba4b7da921f6c319a2fd91
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2259 |
Entropy (8bit): | 5.196819426952487 |
Encrypted: | false |
SSDEEP: | 48:4BgI8pfGa+LO8JrafvB+11BvGJ/nggBfKlHt4FkjVsPJh+F+THl:m85vmJrafvBkBvG5gggTVWfKsF |
MD5: | F7B09FDB1691744187880A3CA9FD85E0 |
SHA1: | 18450B1C67324062E192E8A98656C386C82703D6 |
SHA-256: | 0F1F57569362E4EDA074ADBA294844A5E286F3F01EB9D02050062C5F046321C6 |
SHA-512: | DDAB9E418A8F84C47983C412BCBB590B062E0EE5D236A0416C0DE50A5A21C3C5818CB0B3D30FB28C5E49EE12949C429632F4A7CCB85A0A255B923AA0AC0E23C6 |
Malicious: | false |
Reputation: | low |
URL: | https://show.zohopublic.eu/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 37676 |
Entropy (8bit): | 7.988164023511737 |
Encrypted: | false |
SSDEEP: | 768:KqgRRTe0y3G21RKitDDk5pNQhZLKpMYkvMBdeXa8GODo10abUvevzUxNXs:KPRR3q/TKitDDkyC/kvMBUKJQobgvevL |
MD5: | CBDDDD82DA22C6CBDD41EA4342266ABF |
SHA1: | 080A92C0FE8FF513EE966A446BE89128FA31E79A |
SHA-256: | 251D58CC997156886BAC2CEFC52D1330129544D5F1D6C2A4722242FE3EAA7E9D |
SHA-512: | 766F4CA8AFA36046CF26C2198BB36F6A4799D60D464E7CA4A09D9B9D7574960E685ADC8AA47F401779697602364DF8C8DD073736B5DD7791104F50A7EC207721 |
Malicious: | false |
Reputation: | low |
URL: | https://static.zohocdn.com/webfonts/latoregular/font.woff |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3523 |
Entropy (8bit): | 7.792189152678393 |
Encrypted: | false |
SSDEEP: | 96:PXFPj7Bw+JfKGBmgyWamUzgDhF9mJNlUXC0wPF0Ty5X2v:PFHBw5GB7yP+W2XCpPF0TyR2v |
MD5: | D2DBF8A61EC3F9DB7A194B6853BDA869 |
SHA1: | 032C6B9E7CFEBE78BD95F9B69C9AF61CD0C281B5 |
SHA-256: | 7474EFD9F367D66A9702805A44C67CB2879E3D3CC855D0897E1FC1011E28AF87 |
SHA-512: | A01A18B042B50C38FD18712A22371B61C1AF4B9115FF4ACCB3BA728BABCDB219590BEDA5B16A0E56A0C9F6C8711594B6C47CA170740354CF83297374CE4C7AAE |
Malicious: | false |
Reputation: | low |
URL: | https://img.zohostatic.eu/show/master_19jan_2024/styles_4_0/images/showlogo.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3523 |
Entropy (8bit): | 7.792189152678393 |
Encrypted: | false |
SSDEEP: | 96:PXFPj7Bw+JfKGBmgyWamUzgDhF9mJNlUXC0wPF0Ty5X2v:PFHBw5GB7yP+W2XCpPF0TyR2v |
MD5: | D2DBF8A61EC3F9DB7A194B6853BDA869 |
SHA1: | 032C6B9E7CFEBE78BD95F9B69C9AF61CD0C281B5 |
SHA-256: | 7474EFD9F367D66A9702805A44C67CB2879E3D3CC855D0897E1FC1011E28AF87 |
SHA-512: | A01A18B042B50C38FD18712A22371B61C1AF4B9115FF4ACCB3BA728BABCDB219590BEDA5B16A0E56A0C9F6C8711594B6C47CA170740354CF83297374CE4C7AAE |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 36876 |
Entropy (8bit): | 7.9876762997497694 |
Encrypted: | false |
SSDEEP: | 768:5jMmISEdHIM0k/53xcNhxlJFxjEcyU39MkKr5RM7No:16HeS53xcNh5jExU3oDoo |
MD5: | CF67E25500295A4B7BBC85DBF9868169 |
SHA1: | 191125A56E19C115E327774E8D169B225B83B4D1 |
SHA-256: | AABBF311DC3130BED6450BB308E0525F781F55C91D7A3E010807FAE020456B56 |
SHA-512: | 9BBB40AB4A66838451589F6F0AFD0BCE4094D4A9D2BA8640944FCBF0017C6ECB8C873232A1AA037FD010739A39E69CA8170F9B5A9CE3EE35D26FBDC8127A0876 |
Malicious: | false |
Reputation: | low |
URL: | https://static.zohocdn.com/webfonts/latobold/font.woff |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jan 25, 2024 18:59:59.872765064 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 18:59:59.872838020 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 18:59:59.872940063 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 18:59:59.873231888 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 18:59:59.873266935 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 18:59:59.873693943 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 18:59:59.873771906 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 18:59:59.873884916 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 18:59:59.874201059 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 18:59:59.874279976 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.152163029 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.152318001 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.152417898 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.152452946 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.152681112 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.152740955 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.153294086 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.153508902 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.154347897 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.154361010 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.154424906 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.154592991 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.155472040 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.155570030 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.155728102 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.155821085 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.155823946 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.155853987 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.155940056 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.155955076 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.209805012 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.209830046 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.340763092 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.341146946 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:00.341478109 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.341478109 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.346615076 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.346988916 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.347075939 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.347553015 CET | 49730 | 443 | 192.168.2.4 | 74.125.138.84 |
Jan 25, 2024 19:00:00.347592115 CET | 443 | 49730 | 74.125.138.84 | 192.168.2.4 |
Jan 25, 2024 19:00:00.649723053 CET | 49731 | 443 | 192.168.2.4 | 172.253.124.101 |
Jan 25, 2024 19:00:00.649785995 CET | 443 | 49731 | 172.253.124.101 | 192.168.2.4 |
Jan 25, 2024 19:00:02.178540945 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.178589106 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.178644896 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.179507971 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.179579973 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.179588079 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.179600954 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.179662943 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.179984093 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.180062056 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.646153927 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.646164894 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.646406889 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.646462917 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.646779060 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.646837950 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.647927999 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.647994041 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.648312092 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.648528099 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.650065899 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.650157928 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.650760889 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.650763035 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.650775909 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.650903940 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.694839954 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.694845915 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.694900990 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:02.739636898 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.739664078 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:02.739718914 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.739947081 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.739963055 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:02.741966963 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:02.967828989 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:02.968096018 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.968103886 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:02.969728947 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:02.969799995 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.970664024 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:02.970746040 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:03.012785912 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:03.012792110 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:03.055308104 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:03.075176001 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:03.075232983 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:03.075386047 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:03.075396061 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:03.075439930 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:03.083731890 CET | 49736 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:03.083774090 CET | 443 | 49736 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:03.542392015 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.542470932 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.542546988 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.542749882 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.542825937 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.542901993 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.544131041 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.544209003 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.544466019 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.544529915 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.910140038 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.910514116 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.910573006 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.912029982 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.912106037 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.914247036 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.914347887 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.915132999 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.915162086 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.917608023 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.918057919 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.918116093 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.919713020 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.919888020 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.921401024 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.921506882 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.921729088 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.921746969 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:03.962184906 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:03.962330103 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.228980064 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229007006 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229017019 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229033947 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229062080 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229188919 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.229188919 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.229188919 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.229257107 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.229322910 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.231009960 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231034040 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231041908 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231091976 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231137037 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231199980 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.231199980 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.231199980 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.231200933 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.231268883 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.231332064 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.285033941 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.285109997 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.285201073 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.285569906 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.285604000 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.392885923 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.392950058 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393026114 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393027067 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393093109 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393129110 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393145084 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393165112 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393202066 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393224955 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393235922 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393349886 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.393408060 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393843889 CET | 49739 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.393932104 CET | 443 | 49739 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.394396067 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.394428015 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.394529104 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.394604921 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.394606113 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.394606113 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.394629955 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.394684076 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.396722078 CET | 49740 | 443 | 192.168.2.4 | 204.141.43.48 |
Jan 25, 2024 19:00:04.396780968 CET | 443 | 49740 | 204.141.43.48 | 192.168.2.4 |
Jan 25, 2024 19:00:04.414971113 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.415047884 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.415146112 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.451745033 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.451819897 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.679677963 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.679783106 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.688684940 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.688738108 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.689184904 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.700519085 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.704051018 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.704109907 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.705718994 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.705919027 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.716370106 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.716516972 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.716892004 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.716949940 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:04.744297028 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.759644032 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:04.836868048 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.877933979 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.941154957 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.941308022 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.941560984 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.952581882 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.952646017 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.952682972 CET | 49742 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.952699900 CET | 443 | 49742 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.985531092 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.985579967 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:04.985651016 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.986092091 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:04.986129045 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.092778921 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:05.092854977 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:05.093008995 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:05.093048096 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:05.093113899 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:05.093678951 CET | 49741 | 443 | 192.168.2.4 | 185.230.214.31 |
Jan 25, 2024 19:00:05.093717098 CET | 443 | 49741 | 185.230.214.31 | 192.168.2.4 |
Jan 25, 2024 19:00:05.117530107 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:05.157931089 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:05.208743095 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.208853006 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:05.258915901 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:05.258946896 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.260075092 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.263756990 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:05.276575089 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.276654005 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.276729107 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.277369976 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.277405024 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.305922985 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.321584940 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:05.321641922 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:05.321820974 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:05.321959972 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:05.322027922 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:05.325376987 CET | 49737 | 443 | 192.168.2.4 | 185.230.212.121 |
Jan 25, 2024 19:00:05.325436115 CET | 443 | 49737 | 185.230.212.121 | 192.168.2.4 |
Jan 25, 2024 19:00:05.410633087 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.410804987 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.410938978 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:05.413506031 CET | 49743 | 443 | 192.168.2.4 | 23.220.189.216 |
Jan 25, 2024 19:00:05.413547039 CET | 443 | 49743 | 23.220.189.216 | 192.168.2.4 |
Jan 25, 2024 19:00:05.680962086 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.681226015 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.681286097 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.682759047 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.682832003 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.683123112 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.683211088 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.683248043 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.727673054 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:05.727729082 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:05.774525881 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:06.070832014 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:06.070890903 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:06.070951939 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:06.070979118 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:06.071019888 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:06.071070910 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:06.071114063 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:06.191108942 CET | 49744 | 443 | 192.168.2.4 | 185.230.212.112 |
Jan 25, 2024 19:00:06.191171885 CET | 443 | 49744 | 185.230.212.112 | 192.168.2.4 |
Jan 25, 2024 19:00:12.970771074 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:12.970855951 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:12.970901966 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:13.094583988 CET | 49738 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:00:13.094609976 CET | 443 | 49738 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:00:13.532569885 CET | 49672 | 443 | 192.168.2.4 | 173.222.162.32 |
Jan 25, 2024 19:00:13.532609940 CET | 443 | 49672 | 173.222.162.32 | 192.168.2.4 |
Jan 25, 2024 19:00:15.258795023 CET | 80 | 49723 | 69.164.42.0 | 192.168.2.4 |
Jan 25, 2024 19:00:15.258922100 CET | 49723 | 80 | 192.168.2.4 | 69.164.42.0 |
Jan 25, 2024 19:00:15.259893894 CET | 49723 | 80 | 192.168.2.4 | 69.164.42.0 |
Jan 25, 2024 19:00:15.362905025 CET | 80 | 49723 | 69.164.42.0 | 192.168.2.4 |
Jan 25, 2024 19:00:29.632942915 CET | 80 | 49724 | 69.164.42.0 | 192.168.2.4 |
Jan 25, 2024 19:00:29.633053064 CET | 49724 | 80 | 192.168.2.4 | 69.164.42.0 |
Jan 25, 2024 19:00:29.633125067 CET | 49724 | 80 | 192.168.2.4 | 69.164.42.0 |
Jan 25, 2024 19:00:29.736222029 CET | 80 | 49724 | 69.164.42.0 | 192.168.2.4 |
Jan 25, 2024 19:01:02.671117067 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:02.671171904 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.671530962 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:02.672072887 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:02.672102928 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.885601044 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.885982037 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:02.885998964 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.886574030 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.886939049 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:02.887023926 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:02.931401968 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:12.882750988 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:12.882942915 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Jan 25, 2024 19:01:12.884525061 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:14.141773939 CET | 49754 | 443 | 192.168.2.4 | 142.250.105.99 |
Jan 25, 2024 19:01:14.141827106 CET | 443 | 49754 | 142.250.105.99 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jan 25, 2024 18:59:59.753048897 CET | 56318 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 18:59:59.753343105 CET | 52738 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 18:59:59.753873110 CET | 55991 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 18:59:59.753998041 CET | 61752 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 18:59:59.850908041 CET | 53 | 54459 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 18:59:59.872101068 CET | 53 | 52738 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 18:59:59.872118950 CET | 53 | 56318 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 18:59:59.872454882 CET | 53 | 55991 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 18:59:59.873132944 CET | 53 | 61752 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:00.504658937 CET | 53 | 50437 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:00.768460989 CET | 49579 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:00.768764019 CET | 62039 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:01.532866955 CET | 53 | 62039 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:01.791765928 CET | 64759 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:02.177690983 CET | 53 | 49579 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:02.283665895 CET | 53 | 64759 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:02.619435072 CET | 57840 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:02.619895935 CET | 63767 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:02.738708019 CET | 53 | 57840 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:02.738761902 CET | 53 | 63767 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:03.171628952 CET | 56129 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:03.203288078 CET | 55417 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:03.207118988 CET | 50222 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:03.207252026 CET | 49986 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:03.329428911 CET | 53 | 49986 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:03.541521072 CET | 53 | 50222 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:04.006248951 CET | 53 | 55417 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:04.187300920 CET | 58348 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:04.284198046 CET | 53 | 56129 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:05.122888088 CET | 55032 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:05.123522997 CET | 58776 | 53 | 192.168.2.4 | 1.1.1.1 |
Jan 25, 2024 19:00:05.178961039 CET | 53 | 58348 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:05.242269039 CET | 53 | 55032 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:05.675954103 CET | 53 | 58776 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:16.342066050 CET | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Jan 25, 2024 19:00:17.881057978 CET | 53 | 60268 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:37.003272057 CET | 53 | 62181 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:58.414061069 CET | 53 | 60543 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:00:59.690306902 CET | 53 | 49639 | 1.1.1.1 | 192.168.2.4 |
Jan 25, 2024 19:01:26.988082886 CET | 53 | 64527 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Jan 25, 2024 19:00:02.283900023 CET | 192.168.2.4 | 1.1.1.1 | c218 | (Port unreachable) | Destination Unreachable |
Jan 25, 2024 19:00:05.179332972 CET | 192.168.2.4 | 1.1.1.1 | c215 | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jan 25, 2024 18:59:59.753048897 CET | 192.168.2.4 | 1.1.1.1 | 0xcd62 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 18:59:59.753343105 CET | 192.168.2.4 | 1.1.1.1 | 0xa019 | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 18:59:59.753873110 CET | 192.168.2.4 | 1.1.1.1 | 0xb6f0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 18:59:59.753998041 CET | 192.168.2.4 | 1.1.1.1 | 0xea5 | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 19:00:00.768460989 CET | 192.168.2.4 | 1.1.1.1 | 0x294e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:00.768764019 CET | 192.168.2.4 | 1.1.1.1 | 0xa27c | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 19:00:01.791765928 CET | 192.168.2.4 | 1.1.1.1 | 0x2a42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:02.619435072 CET | 192.168.2.4 | 1.1.1.1 | 0xed8e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:02.619895935 CET | 192.168.2.4 | 1.1.1.1 | 0x5e78 | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 19:00:03.171628952 CET | 192.168.2.4 | 1.1.1.1 | 0xc55d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:03.203288078 CET | 192.168.2.4 | 1.1.1.1 | 0xe902 | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 19:00:03.207118988 CET | 192.168.2.4 | 1.1.1.1 | 0x3922 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:03.207252026 CET | 192.168.2.4 | 1.1.1.1 | 0x7e52 | Standard query (0) | 65 | IN (0x0001) | false | |
Jan 25, 2024 19:00:04.187300920 CET | 192.168.2.4 | 1.1.1.1 | 0x3a6e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:05.122888088 CET | 192.168.2.4 | 1.1.1.1 | 0xefaf | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jan 25, 2024 19:00:05.123522997 CET | 192.168.2.4 | 1.1.1.1 | 0xf073 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jan 25, 2024 18:59:59.872118950 CET | 1.1.1.1 | 192.168.2.4 | 0xcd62 | No error (0) | 74.125.138.84 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | clients.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.101 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.138 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.113 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.102 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.100 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.872454882 CET | 1.1.1.1 | 192.168.2.4 | 0xb6f0 | No error (0) | 172.253.124.139 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 18:59:59.873132944 CET | 1.1.1.1 | 192.168.2.4 | 0xea5 | No error (0) | clients.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:01.532866955 CET | 1.1.1.1 | 192.168.2.4 | 0xa27c | No error (0) | zs-lc2-26-h2.zoho.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.177690983 CET | 1.1.1.1 | 192.168.2.4 | 0x294e | No error (0) | zs-lc2-26-h2.zoho.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.177690983 CET | 1.1.1.1 | 192.168.2.4 | 0x294e | No error (0) | 185.230.212.121 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.283665895 CET | 1.1.1.1 | 192.168.2.4 | 0x2a42 | No error (0) | zs-lc2-26-H2.zoho.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.283665895 CET | 1.1.1.1 | 192.168.2.4 | 0x2a42 | No error (0) | 185.230.212.121 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.99 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.106 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.104 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.105 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.103 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738708019 CET | 1.1.1.1 | 192.168.2.4 | 0xed8e | No error (0) | 142.250.105.147 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:02.738761902 CET | 1.1.1.1 | 192.168.2.4 | 0x5e78 | No error (0) | 65 | IN (0x0001) | false | |||
Jan 25, 2024 19:00:03.329428911 CET | 1.1.1.1 | 192.168.2.4 | 0x7e52 | No error (0) | h2-stratus.zohocdn.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:03.541521072 CET | 1.1.1.1 | 192.168.2.4 | 0x3922 | No error (0) | h2-stratus.zohocdn.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:03.541521072 CET | 1.1.1.1 | 192.168.2.4 | 0x3922 | No error (0) | 204.141.43.48 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:04.006248951 CET | 1.1.1.1 | 192.168.2.4 | 0xe902 | No error (0) | zohostatic.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:04.284198046 CET | 1.1.1.1 | 192.168.2.4 | 0xc55d | No error (0) | zohostatic.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:04.284198046 CET | 1.1.1.1 | 192.168.2.4 | 0xc55d | No error (0) | 185.230.214.31 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:04.284198046 CET | 1.1.1.1 | 192.168.2.4 | 0xc55d | No error (0) | 185.230.212.112 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.178961039 CET | 1.1.1.1 | 192.168.2.4 | 0x3a6e | No error (0) | zohostatic.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.178961039 CET | 1.1.1.1 | 192.168.2.4 | 0x3a6e | No error (0) | 185.230.212.112 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.178961039 CET | 1.1.1.1 | 192.168.2.4 | 0x3a6e | No error (0) | 185.230.214.31 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.242269039 CET | 1.1.1.1 | 192.168.2.4 | 0xefaf | No error (0) | zohostatic.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.242269039 CET | 1.1.1.1 | 192.168.2.4 | 0xefaf | No error (0) | 185.230.212.112 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.242269039 CET | 1.1.1.1 | 192.168.2.4 | 0xefaf | No error (0) | 185.230.214.31 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:05.675954103 CET | 1.1.1.1 | 192.168.2.4 | 0xf073 | No error (0) | zohostatic.eu | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:16.726262093 CET | 1.1.1.1 | 192.168.2.4 | 0x2753 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:16.726262093 CET | 1.1.1.1 | 192.168.2.4 | 0x2753 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Jan 25, 2024 19:00:52.426810980 CET | 1.1.1.1 | 192.168.2.4 | 0x4a7a | No error (0) | 69.164.42.0 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49731 | 172.253.124.101 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:00 UTC | 752 | OUT | |
2024-01-25 18:00:00 UTC | 732 | IN | |
2024-01-25 18:00:00 UTC | 520 | IN | |
2024-01-25 18:00:00 UTC | 200 | IN | |
2024-01-25 18:00:00 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49730 | 74.125.138.84 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:00 UTC | 680 | OUT | |
2024-01-25 18:00:00 UTC | 1 | OUT | |
2024-01-25 18:00:00 UTC | 1799 | IN | |
2024-01-25 18:00:00 UTC | 23 | IN | |
2024-01-25 18:00:00 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49736 | 185.230.212.121 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:02 UTC | 706 | OUT | |
2024-01-25 18:00:03 UTC | 561 | IN | |
2024-01-25 18:00:03 UTC | 2259 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49739 | 204.141.43.48 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:03 UTC | 578 | OUT | |
2024-01-25 18:00:04 UTC | 714 | IN | |
2024-01-25 18:00:04 UTC | 15670 | IN | |
2024-01-25 18:00:04 UTC | 16384 | IN | |
2024-01-25 18:00:04 UTC | 4822 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49740 | 204.141.43.48 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:03 UTC | 581 | OUT | |
2024-01-25 18:00:04 UTC | 735 | IN | |
2024-01-25 18:00:04 UTC | 15649 | IN | |
2024-01-25 18:00:04 UTC | 16384 | IN | |
2024-01-25 18:00:04 UTC | 5643 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49741 | 185.230.214.31 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:04 UTC | 632 | OUT | |
2024-01-25 18:00:05 UTC | 474 | IN | |
2024-01-25 18:00:05 UTC | 3523 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49742 | 23.220.189.216 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:04 UTC | 161 | OUT | |
2024-01-25 18:00:04 UTC | 642 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49737 | 185.230.212.121 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:05 UTC | 835 | OUT | |
2024-01-25 18:00:05 UTC | 232 | IN | |
2024-01-25 18:00:05 UTC | 2259 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49743 | 23.220.189.216 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:05 UTC | 239 | OUT | |
2024-01-25 18:00:05 UTC | 662 | IN | |
2024-01-25 18:00:05 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49744 | 185.230.212.112 | 443 | 5576 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-01-25 18:00:05 UTC | 394 | OUT | |
2024-01-25 18:00:06 UTC | 474 | IN | |
2024-01-25 18:00:06 UTC | 3523 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:59:54 |
Start date: | 25/01/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:59:56 |
Start date: | 25/01/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:59:59 |
Start date: | 25/01/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |