Analysis Report
Overview
General Information |
---|
Analysis ID: | 64822 |
Start time: | 17:00:48 |
Start date: | 02/05/2015 |
Overall analysis duration: | 0h 13m 14s |
Report type: | full |
Sample file name: | 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976f.bin (renamed file extension from bin to doc) |
Cookbook file name: | Office VBE Instrument.jbs |
Analysis system description: | Windows 7 (Office 2003 SP1, Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 41, Firefox 36) |
Number of analysed new started processes analysed: | 10 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 2 |
HCA enabled: | true |
HCA success: |
|
Warnings: | Show All
|
Detection |
---|
Strategy | Score | Range | Reporting | Detection | |
---|---|---|---|---|---|
Threshold | 100 | 0 - 100 | Report FP / FN |
Signature Overview |
---|
Cryptography: |
---|
Public key (encryption) found | Show sources |
Source: explorer.exe | Binary or memory string: |
Software Vulnerablities: |
---|
Potenial document exploit detected (unknown TCP traffic) | Show sources |
Source: global traffic | TCP traffic: |
Potential document exploit detected (performs DNS queries) | Show sources |
Source: global traffic | DNS query: |
Potential document exploit detected (performs HTTP gets) | Show sources |
Source: global traffic | TCP traffic: |
Document exploit detected (process start blacklist hit) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process created: |
Document exploit detected (creates forbidden files) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File created: |
Document exploit detected (droppes PE files) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File created: |
Networking: |
---|
Urls found in memory or binary data | Show sources |
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe, dwm.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: serebok3.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe | String found in binary or memory: | ||
Source: serebok3.exe, 77EC63BDA74BD0D0E0426DC8F8008506.dr | String found in binary or memory: | ||
Source: 57C8EDB95DF3F0AD4EE2DC2B8CFD4157.dr | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: dwm.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe, TarA136.tmp.dr | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe, dwm.exe | String found in binary or memory: | ||
Source: serebok3.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: |
Contains functionality to download additional files from the internet | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Code function: | 5_2_00407801 |
Downloads files from webservers via HTTP | Show sources |
Source: global traffic | HTTP traffic detected: | ||
Source: global traffic | HTTP traffic detected: | ||
Source: global traffic | HTTP traffic detected: |
Found strings which match to known social media urls | Show sources |
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: serebok3.exe, explorer.exe | String found in binary or memory: | ||
Source: WINWORD.EXE, serebok3.exe | String found in binary or memory: |
Performs DNS lookups | Show sources |
Source: unknown | DNS traffic detected: |
Downloads executable code via HTTP | Show sources |
Source: global traffic | HTTP traffic detected: |
Detected TCP or UDP traffic on non-standard ports | Show sources |
Source: global traffic | TCP traffic: |
Remote Access Functionality: |
---|
Contains functionality to open a port and listen for incoming connection (possibly a backdoor) | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Code function: | 5_1_00405E90 | |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F21D9C5 | |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F21D967 |
Persistence and Installation Behavior: |
---|
Drops PE files | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File created: |
May use bcdedit to modify the Windows boot settings | Show sources |
Source: explorer.exe | Binary or memory string: |
Data Obfuscation: |
---|
Contains functionality to dynamically determine API calls | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F23AC80 |
Generates new code (likely due to unpacking of malware or shellcode) | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Code execution: | ||
Source: C:\Windows\explorer.exe | Code execution: | ||
Source: C:\Windows\System32\dwm.exe | Code execution: |
System Summary: |
---|
Checks if Microsoft Office is installed | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Key opened: |
Binary contains paths to debug symbols | Show sources |
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: | ||
Source: | Binary string: |
Contains functionality to enum processes or threads | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F2214A1 |
Creates files inside the user directory | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File created: |
Creates temporary files | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File created: |
Reads ini files | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File read: |
Reads software policies | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Key opened: |
Runs a DLL by calling functions | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Process created: |
Spawns processes | Show sources |
Source: unknown | Process created: | ||
Source: unknown | Process created: | ||
Source: unknown | Process created: | ||
Source: unknown | Process created: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process created: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Process created: |
Uses an in-process (OLE) Automation server | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Key value queried: |
Contains functionality to launch a process as a different user | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Code function: | 5_2_004019AE |
Creates mutexes | Show sources |
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\System32\dwm.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: | ||
Source: C:\Windows\explorer.exe | Mutant created: |
Reads the hosts file | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File read: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | File read: |
Tries to load missing DLLs | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Section loaded: |
Document contains an embedded VBA macro which decrypts an URL | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: |
Document contains an embedded VBA macro which decrypts suspicious strings | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: |
Document contains an embedded VBA macro which downloads / decrypts PE files | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: |
Document contains an embedded VBA macro which executes code when the document is opened / closed | Show sources |
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: | ||
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: |
Document contains an embedded VBA macro which paths to executable files | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | VBA Memory String: |
Document contains an embedded VBA macro with suspicious strings | Show sources |
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: | ||
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: | ||
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: | ||
Source: 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc | Binary or memory string: |
HIPS / PFW / Operating System Protection Evasion: |
---|
May try to detect the Windows Explorer process (often used for injection) | Show sources |
Source: WINWORD.EXE, explorer.exe, dwm.exe | Binary or memory string: | ||
Source: WINWORD.EXE, explorer.exe, dwm.exe | Binary or memory string: | ||
Source: WINWORD.EXE, explorer.exe, dwm.exe | Binary or memory string: |
Allocates memory in foreign processes | Show sources |
Source: C:\Windows\System32\rundll32.exe | Memory allocated: | ||
Source: C:\Windows\System32\rundll32.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: | ||
Source: C:\Windows\explorer.exe | Memory allocated: |
Changes memory attributes in foreign processes to executable or writable | Show sources |
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\System32\rundll32.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: | ||
Source: C:\Windows\explorer.exe | Memory protected: |
Creates a thread in another existing process (thread injection) | Show sources |
Source: C:\Windows\System32\rundll32.exe | Threat created: | ||
Source: C:\Windows\explorer.exe | Threat created: | ||
Source: C:\Windows\explorer.exe | Threat created: | ||
Source: C:\Windows\explorer.exe | Threat created: |
Injects a PE file into a foreign processes | Show sources |
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: |
Injects code into the Windows Explorer (explorer.exe) | Show sources |
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\System32\rundll32.exe | Memory written: |
Writes to foreign memory regions | Show sources |
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\System32\rundll32.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: | ||
Source: C:\Windows\explorer.exe | Memory written: |
Anti Debugging: |
---|
Contains functionality to register its own exception handler | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F234013 | |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F232220 |
Checks for kernel debuggers (NtQuerySystemInformation(SystemKernelDebuggerInformation)) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | System information queried: |
Contains functionality to check if a debugger is running (IsDebuggerPresent) | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F234013 |
Contains functionality to dynamically determine API calls | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F23AC80 |
Contains functionality which may be used to detect a debugger (GetProcessHeap) | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F237EB3 |
Malware Analysis System Evasion: |
---|
Queries a list of all running processes | Show sources |
Source: C:\Windows\System32\rundll32.exe | Process information queried: |
Checks the free space of harddrives | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | File Volume queried: |
May sleep (evasive loops) to hinder dynamic analysis | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE TID: 2740 | Thread sleep count: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE TID: 2740 | Thread sleep time: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE TID: 3036 | Thread sleep time: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE TID: 3036 | Thread sleep time: | ||
Source: C:\Windows\System32\svchost.exe TID: 2324 | Thread sleep time: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe TID: 416 | Thread sleep time: | ||
Source: C:\Windows\explorer.exe TID: 2508 | Thread sleep time: |
Hooking and other Techniques for Hiding and Protection: |
---|
Disables application error messsages (SetErrorMode) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Process information set: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Process information set: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Process information set: | ||
Source: C:\Windows\System32\rundll32.exe | Process information set: | ||
Source: C:\Windows\System32\rundll32.exe | Process information set: | ||
Source: C:\Windows\System32\rundll32.exe | Process information set: |
Monitors certain registry keys / values for changes (often done to protect autostart functionality) | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Registry key monitored for changes: |
Stores large binary data to the registry | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Key value created or modified: |
Language, Device and Operating System Detection: |
---|
Contains functionality to query local / system time | Show sources |
Source: C:\Windows\explorer.exe | Code function: | 9_2_0F236415 |
Queries the cryptographic machine GUID | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Key value queried: |
Queries the installation date of Windows | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Registry key value queried: | ||
Source: C:\Windows\System32\rundll32.exe | Registry key value queried: | ||
Source: C:\Windows\System32\rundll32.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\explorer.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: | ||
Source: C:\Windows\System32\dwm.exe | Registry key value queried: |
Queries the installation date of Windows | Show sources |
Source: C:\Users\admin\AppData\Local\Temp\serebok3.exe | Key value queried: |
Queries the volume information (name, serial number etc) of a device | Show sources |
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Qeruies volume information: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Qeruies volume information: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Qeruies volume information: | ||
Source: C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE | Qeruies volume information: |
Yara Overview |
---|
No Yara matches |
---|
Startup |
---|
|
Created / dropped Files |
---|
File Path | Type and Hashes |
---|---|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
|
Contacted Domains/Contacted IPs |
---|
Contacted Domains |
---|
Name | IP | Name Server | Active | Registrar | |
---|---|---|---|---|---|
ctldl.windowsupdate.com | 23.15.7.104 | unknown | true | unknown | unknown |
www.zarajones.com.au | 175.45.125.181 | unknown | true | unknown | unknown |
Contacted IPs |
---|
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Country | Pingable | Open Ports |
---|---|---|---|
8.8.8.8 | United States | unknown | unknown |
175.45.125.181 | Australia | unknown | unknown |
23.15.7.104 | United States | unknown | unknown |
212.227.89.182 | Germany | unknown | unknown |
Static File Info |
---|
General | |
---|---|
File type: | CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1251, Author: 1, Template: Normal.dot, Last Saved By: Microsoft Office, Revision Number: 2, Name of Creating Application: Microsoft Office Word, Total Editing Time: 01:00, Create Time/Date: Tue Mar 31 07:31:00 2015, Last Saved Time/Date: Tue Mar 31 07:31:00 2015, Number of Pages: 1, Number of Words: 0, Number of Characters: 0, Security: 0 |
TrID: |
|
File name: | 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976.doc |
File size: | 76800 |
MD5: | 3aa72aacd5b215b6003d6b408fc65b33 |
SHA1: | 390de28126fcce447a9a27a154c863d38f7236c7 |
SHA256: | 5a79c5584163b3176d89eb65ddf83a74264d345a3cf9b197781ac2c30ec2976f |
SHA512: | 14f8a1ac1f9b8ecdcf28047bc3a3d6bea98944a3b87a175d0e6903646efe748a0b89f241f4eb62cef3934e4b3b2338bceb43b2c7da4f8b9862904e42cd40d7d9 |
Network Behavior |
---|
TCP Packets |
---|
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mai 2, 2015 17:01:18.593837976 MESZ | 53493 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:19.383366108 MESZ | 53 | 53493 | 8.8.8.8 | 192.168.1.12 |
Mai 2, 2015 17:01:19.408899069 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:19.408921003 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:19.408991098 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:19.409693956 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:19.409706116 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.384270906 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.384629011 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.393235922 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.393265963 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.393276930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.393287897 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.393297911 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.393605947 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.393660069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.394706011 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.410943031 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.410952091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.410954952 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.411050081 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.411062002 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.411118984 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.697259903 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.697630882 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.717674017 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.717701912 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.718028069 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.785506964 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.785537004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.785859108 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.794048071 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794075966 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794085979 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794097900 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794342995 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.794393063 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794836998 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.794863939 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.795068026 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.795109034 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.797903061 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:20.803819895 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.803838968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:20.803908110 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.085356951 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.085441113 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.093193054 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093209982 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093213081 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093214989 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093231916 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093321085 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.093343019 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093408108 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093413115 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093430042 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.093447924 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.093512058 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.111856937 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.111872911 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.111876011 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.111969948 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.111991882 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.112066031 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.112169981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.112174988 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.112186909 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.112277985 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.112287045 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.112355947 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.385809898 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.385924101 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.394891977 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.394902945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.394912004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.394920111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.394923925 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.395034075 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.395052910 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.395095110 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.395101070 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.395175934 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.395188093 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.395256996 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.413614035 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413625002 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413635969 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413712025 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.413727045 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413969040 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413975954 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413980007 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413983107 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.413985968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414068937 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.414083958 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414268970 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414274931 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414278030 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414280891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414366007 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.414376974 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.414437056 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.416819096 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.685549974 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.685667992 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.694536924 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.694545984 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.694554090 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.694636106 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.697665930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.697674036 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.697680950 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.697740078 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.712910891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.713025093 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.785517931 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.785586119 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.795214891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795222998 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795241117 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795245886 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795248985 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795315981 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.795337915 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795429945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795435905 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795509100 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.795517921 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.795582056 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.813838959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.813846111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.813862085 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.813915014 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.813935041 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.813955069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.814038038 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.814045906 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.814109087 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.890064955 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890074968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890079975 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890155077 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.890165091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890219927 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890227079 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.890261889 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.890270948 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.891036034 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:21.908524036 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.908533096 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.908535957 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:21.908588886 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.088690042 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.088784933 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.098606110 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098613977 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098617077 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098710060 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.098952055 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098958969 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098962069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098964930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.098968029 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.099036932 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.099046946 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.099560976 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.100791931 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.103864908 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.103882074 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.103884935 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.103957891 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.103977919 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.104029894 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.107218981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.107225895 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.107228994 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.107306004 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.188052893 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188064098 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188066959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188189983 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.188205004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188235044 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188241959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.188307047 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.188316107 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.189109087 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.283652067 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283658981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283662081 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283664942 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283667088 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283756971 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.283771038 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283801079 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283806086 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283807993 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283886909 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.283896923 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.283940077 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.284019947 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284024000 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284025908 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284029007 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284030914 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284090042 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.284097910 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284140110 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.284172058 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284177065 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284181118 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.284224033 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.287018061 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.288131952 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.288214922 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.385741949 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.385852098 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.395200014 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395206928 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395209074 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395294905 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.395505905 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395512104 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395514965 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395517111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395519972 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.395601034 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.395612955 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.396336079 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.399322987 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.399341106 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.399348021 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.399435997 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.399445057 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.399486065 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.404402971 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.404418945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.404421091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.404485941 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.486705065 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486722946 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486726046 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486728907 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486732006 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486804962 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.486828089 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486880064 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486884117 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.486958027 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.486967087 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.487008095 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.495590925 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495598078 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495599985 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495652914 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.495675087 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495748043 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495752096 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495841026 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.495851040 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.495889902 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.499840021 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.504997015 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.505003929 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.505008936 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:01:22.505059958 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:22.512365103 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
Mai 2, 2015 17:01:24.517622948 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.517656088 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:24.517729998 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.526823044 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.526834965 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:24.886872053 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:24.886970997 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.945194960 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:24.945276022 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.946002960 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:24.946013927 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:25.087464094 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:25.087744951 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:29.862291098 MESZ | 58413 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:30.177536011 MESZ | 53 | 58413 | 8.8.8.8 | 192.168.1.12 |
Mai 2, 2015 17:01:30.184145927 MESZ | 51766 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:30.184226990 MESZ | 53 | 51766 | 8.8.8.8 | 192.168.1.12 |
Mai 2, 2015 17:01:30.185008049 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:30.185035944 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:30.185117960 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:30.185457945 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:30.185477972 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:30.465543985 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:30.665251017 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.126486063 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.126506090 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.272706985 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.273792982 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.273802042 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.273861885 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.273874044 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.288455009 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.288463116 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.288549900 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.288561106 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.290961981 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.290990114 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.291233063 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.291280031 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.310190916 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.310214043 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.310463905 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.310518026 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.350961924 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.350999117 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.351033926 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.351301908 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.351361036 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.351553917 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.351573944 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.351829052 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.351869106 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.365091085 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.365129948 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.365427971 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.365483046 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.366172075 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.366200924 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.366405964 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.366451979 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.368789911 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.368822098 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.368844032 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.369124889 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.369180918 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.369703054 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.369730949 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.369915962 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.369961023 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.370199919 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.370217085 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.370448112 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.370490074 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.381957054 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.381993055 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.382292986 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.382345915 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.598570108 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.598870993 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:35.598923922 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 |
Mai 2, 2015 17:01:35.698820114 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:35.698846102 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:35.805839062 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:36.536736965 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.536827087 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.538007975 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.538099051 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.538213968 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.538311005 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.552697897 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.552707911 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.552711010 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.552804947 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.555334091 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.555341005 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.555345058 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.555430889 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.559678078 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.559768915 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.559973955 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.559979916 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.559983015 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.560070038 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.560409069 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.560415983 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.560503960 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.568361044 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.568681002 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.568732023 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.569286108 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.571784973 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.571815968 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.572155952 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.574165106 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.574193954 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.574517012 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.575274944 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.575581074 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.578911066 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.578939915 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.579242945 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.579293966 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.579992056 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.594141006 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.594185114 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.594479084 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.778542042 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.778665066 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.783755064 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.783763885 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.783858061 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.785377026 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.785495043 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.787399054 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.787408113 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.787411928 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.787494898 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.788702011 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.788711071 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.788794994 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.792431116 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.792438030 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.792439938 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.792524099 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.793622017 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.793629885 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.793633938 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.793716908 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.794610023 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.794617891 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.794621944 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.794703960 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.796406031 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.796412945 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.796416044 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.796504974 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.797152042 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.797158957 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.797163010 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.797245979 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.805893898 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.806027889 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.808372974 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.808382034 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.808384895 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.808466911 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.815915108 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.815922976 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.816008091 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.882689953 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.883027077 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.884099960 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.884481907 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.885297060 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.885333061 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.885370016 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.885656118 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.886065006 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.886106968 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.886116982 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.886332989 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.886955976 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.886990070 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.887005091 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.887314081 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.887837887 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.887862921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.887872934 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.888185978 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.888240099 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.888457060 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.899852991 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.899888992 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.899905920 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.900290966 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.900538921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.900562048 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.900572062 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.900831938 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:36.901117086 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.901137114 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.901145935 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:36.901381969 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.284889936 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.285204887 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.285908937 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.285942078 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.285952091 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.286323071 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.286380053 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.287338972 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.287393093 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.287677050 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.288002968 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.288038015 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.288053036 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.288070917 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.288347960 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.288397074 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.288640022 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.289026022 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.289058924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.289074898 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.289311886 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.289839029 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.290025949 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.290062904 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.290077925 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.290313959 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.290391922 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.290832996 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.291254997 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.291292906 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.291307926 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.291501999 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.292463064 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.292500973 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.292516947 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.292829990 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.293638945 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.293677092 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.293694019 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.293973923 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.294696093 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.294737101 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.294759035 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.294924974 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.295088053 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.295396090 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.295444012 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.295712948 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.295758009 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.296657085 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.296693087 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.297024012 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.297072887 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.297323942 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.297369957 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.297614098 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.297806978 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.297842979 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298094034 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.298378944 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298413038 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298609972 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.298816919 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298824072 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298825979 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298911095 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.298923016 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298978090 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.298985958 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.298994064 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299068928 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299078941 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299144030 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299238920 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299247980 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299319983 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299474955 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299483061 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299487114 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299546957 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299557924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299622059 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299684048 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299691916 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299695969 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299757004 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299839973 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299848080 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299921989 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.299933910 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.299998045 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.300111055 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300117970 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300132036 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300193071 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.300283909 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300292015 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300355911 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.300571918 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300578117 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300589085 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300658941 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.300669909 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300801992 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300808907 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300878048 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.300889015 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300949097 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.300997972 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.301007986 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.301171064 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.301178932 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.301214933 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:37.301223040 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:37.301523924 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.287405968 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287415028 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287417889 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287471056 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287496090 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.287508965 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287641048 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287646055 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287714005 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.287734032 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287777901 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287834883 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287853003 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.287863016 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287928104 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.287971973 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.287981033 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288028002 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288032055 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288079977 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288088083 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288144112 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288147926 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288187981 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288196087 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288222075 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288259029 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288265944 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288322926 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288326979 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288362980 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288369894 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288414001 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288453102 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288460970 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288495064 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288515091 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288532019 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288538933 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288635969 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288640022 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288686037 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288693905 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288821936 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288825989 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288829088 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288877964 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.288878918 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.288887978 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289016962 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289021969 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289024115 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289072990 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289082050 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289124966 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289129019 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289169073 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289176941 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289252043 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289256096 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289303064 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289310932 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289377928 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289382935 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289417982 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289424896 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289484024 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289488077 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289499044 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289558887 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289566040 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289619923 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289623976 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289664030 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289671898 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289736032 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289738894 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289753914 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289793015 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289799929 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289849997 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289854050 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289891005 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.289900064 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.289908886 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290035963 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290040016 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290041924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290090084 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290098906 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290132046 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290132999 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290177107 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290184021 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290254116 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290258884 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290297031 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290304899 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290375948 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290380001 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290416956 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290424109 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:38.290491104 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:38.290570974 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284518957 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284607887 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284632921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284637928 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284643888 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284709930 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284763098 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284766912 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284770012 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284837008 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284847021 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284908056 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284909010 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284913063 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284918070 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.284977913 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.284986019 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285036087 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285056114 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285059929 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285106897 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285186052 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285191059 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285193920 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285212994 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285250902 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285259008 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285312891 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285334110 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285337925 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285341024 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285377979 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285404921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285408974 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285444975 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285512924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285516977 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285520077 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285556078 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285633087 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285636902 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285639048 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285671949 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285737038 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285741091 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285743952 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285799026 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.285883904 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285887003 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285898924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.285979986 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286067963 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286072016 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286084890 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286144018 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286210060 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286212921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286216021 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286278963 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286288023 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286345005 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286384106 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286386967 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286390066 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286453009 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286461115 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286549091 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.286665916 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286675930 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286683083 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.286772013 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.287084103 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287092924 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287098885 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287106991 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287201881 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.287221909 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287585974 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.287620068 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287632942 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287640095 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287648916 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287655115 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.287736893 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.287755013 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288145065 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288153887 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288160086 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288166046 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288172960 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288268089 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.288289070 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288429976 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288439989 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288530111 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.288548946 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288639069 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288647890 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288718939 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.288737059 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288907051 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288916111 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.288991928 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.289009094 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.289103985 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.289177895 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.289194107 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.289311886 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.289387941 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:39.289402962 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:39.289767027 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.285178900 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285212040 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285222054 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285499096 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.285557032 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285862923 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285881996 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.285892963 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286154032 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286195040 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286398888 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286565065 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286569118 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286571980 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286622047 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286629915 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286679983 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286705971 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286710978 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286712885 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286771059 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286777973 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286825895 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286869049 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286874056 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286879063 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.286917925 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.286923885 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287070036 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287075043 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287077904 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287113905 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287121058 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287195921 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287200928 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287230968 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287236929 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287303925 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287307978 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287338972 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287344933 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287441969 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287446976 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287481070 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287486076 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287492990 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287518024 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287599087 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287604094 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287606001 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287646055 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287652969 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287683964 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287772894 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287786007 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287789106 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287831068 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287902117 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287905931 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287908077 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.287976027 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.287981987 MESZ | 3443 | 49355 | 212.227.89.182 | 192.168.1.12 |
Mai 2, 2015 17:01:40.288058996 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:40.290282965 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:01:41.699393034 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 |
Mai 2, 2015 17:01:41.699492931 MESZ | 49355 | 3443 | 192.168.1.12 | 212.227.89.182 |
Mai 2, 2015 17:02:25.678800106 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 |
Mai 2, 2015 17:02:25.678878069 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 |
UDP Packets |
---|
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mai 2, 2015 17:01:18.593837976 MESZ | 53493 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:19.383366108 MESZ | 53 | 53493 | 8.8.8.8 | 192.168.1.12 |
Mai 2, 2015 17:01:29.862291098 MESZ | 58413 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:30.177536011 MESZ | 53 | 58413 | 8.8.8.8 | 192.168.1.12 |
Mai 2, 2015 17:01:30.184145927 MESZ | 51766 | 53 | 192.168.1.12 | 8.8.8.8 |
Mai 2, 2015 17:01:30.184226990 MESZ | 53 | 51766 | 8.8.8.8 | 192.168.1.12 |
DNS Queries |
---|
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class |
---|---|---|---|---|---|---|---|
Mai 2, 2015 17:01:18.593837976 MESZ | 192.168.1.12 | 8.8.8.8 | 0x1c41 | Standard query (0) | www.zarajones.com.au | A (IP address) | IN (0x0001) |
Mai 2, 2015 17:01:29.862291098 MESZ | 192.168.1.12 | 8.8.8.8 | 0xe9ef | Standard query (0) | ctldl.windowsupdate.com | A (IP address) | IN (0x0001) |
Mai 2, 2015 17:01:30.184145927 MESZ | 192.168.1.12 | 8.8.8.8 | 0x478a | Standard query (0) | ctldl.windowsupdate.com | A (IP address) | IN (0x0001) |
DNS Answers |
---|
Timestamp | Source IP | Dest IP | Trans ID | Replay Code | Name | CName | Address | Type | Class |
---|---|---|---|---|---|---|---|---|---|
Mai 2, 2015 17:01:19.383366108 MESZ | 8.8.8.8 | 192.168.1.12 | 0x1c41 | No error (0) | www.zarajones.com.au | 175.45.125.181 | A (IP address) | IN (0x0001) | |
Mai 2, 2015 17:01:30.177536011 MESZ | 8.8.8.8 | 192.168.1.12 | 0xe9ef | No error (0) | ctldl.windowsupdate.com | 23.15.7.104 | A (IP address) | IN (0x0001) | |
Mai 2, 2015 17:01:30.184226990 MESZ | 8.8.8.8 | 192.168.1.12 | 0x478a | No error (0) | ctldl.windowsupdate.com | 23.15.7.104 | A (IP address) | IN (0x0001) |
HTTP Request Dependency Graph |
---|
|
HTTP Packets |
---|
Timestamp | Source Port | Dest Port | Source IP | Dest IP | Header | Total Bytes Transfered (KB) |
---|---|---|---|---|---|---|
Mai 2, 2015 17:01:19.409693956 MESZ | 49354 | 80 | 192.168.1.12 | 175.45.125.181 | 0 | |
Mai 2, 2015 17:01:20.384270906 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 1 | |
Mai 2, 2015 17:01:20.393235922 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 2 | |
Mai 2, 2015 17:01:20.393265963 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 4 | |
Mai 2, 2015 17:01:20.393276930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 5 | |
Mai 2, 2015 17:01:20.393287897 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 6 | |
Mai 2, 2015 17:01:20.393297911 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 8 | |
Mai 2, 2015 17:01:20.393660069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 8 | |
Mai 2, 2015 17:01:20.410943031 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 10 | |
Mai 2, 2015 17:01:20.410952091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 11 | |
Mai 2, 2015 17:01:20.410954952 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 12 | |
Mai 2, 2015 17:01:20.411062002 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 14 | |
Mai 2, 2015 17:01:20.697259903 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 14 | |
Mai 2, 2015 17:01:20.717674017 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 16 | |
Mai 2, 2015 17:01:20.717701912 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 16 | |
Mai 2, 2015 17:01:20.785506964 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 18 | |
Mai 2, 2015 17:01:20.785537004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 18 | |
Mai 2, 2015 17:01:20.794048071 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 20 | |
Mai 2, 2015 17:01:20.794075966 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 21 | |
Mai 2, 2015 17:01:20.794085979 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 22 | |
Mai 2, 2015 17:01:20.794097900 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 24 | |
Mai 2, 2015 17:01:20.794393063 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 25 | |
Mai 2, 2015 17:01:20.794836998 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 27 | |
Mai 2, 2015 17:01:20.794863939 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 28 | |
Mai 2, 2015 17:01:20.795109034 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 29 | |
Mai 2, 2015 17:01:20.803819895 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 31 | |
Mai 2, 2015 17:01:20.803838968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 32 | |
Mai 2, 2015 17:01:21.085356951 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 33 | |
Mai 2, 2015 17:01:21.093193054 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 34 | |
Mai 2, 2015 17:01:21.093209982 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 36 | |
Mai 2, 2015 17:01:21.093213081 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 37 | |
Mai 2, 2015 17:01:21.093214989 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 38 | |
Mai 2, 2015 17:01:21.093231916 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 40 | |
Mai 2, 2015 17:01:21.093343019 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 40 | |
Mai 2, 2015 17:01:21.093408108 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 42 | |
Mai 2, 2015 17:01:21.093413115 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 43 | |
Mai 2, 2015 17:01:21.093447924 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 44 | |
Mai 2, 2015 17:01:21.111856937 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 46 | |
Mai 2, 2015 17:01:21.111872911 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 47 | |
Mai 2, 2015 17:01:21.111876011 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 48 | |
Mai 2, 2015 17:01:21.111991882 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 49 | |
Mai 2, 2015 17:01:21.112169981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 50 | |
Mai 2, 2015 17:01:21.112174988 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 52 | |
Mai 2, 2015 17:01:21.112186909 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 53 | |
Mai 2, 2015 17:01:21.112287045 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 55 | |
Mai 2, 2015 17:01:21.385809898 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 55 | |
Mai 2, 2015 17:01:21.394891977 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 57 | |
Mai 2, 2015 17:01:21.394902945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 58 | |
Mai 2, 2015 17:01:21.394912004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 59 | |
Mai 2, 2015 17:01:21.394920111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 61 | |
Mai 2, 2015 17:01:21.394923925 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 62 | |
Mai 2, 2015 17:01:21.395052910 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 63 | |
Mai 2, 2015 17:01:21.395095110 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 64 | |
Mai 2, 2015 17:01:21.395101070 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 66 | |
Mai 2, 2015 17:01:21.395188093 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 67 | |
Mai 2, 2015 17:01:21.413614035 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 68 | |
Mai 2, 2015 17:01:21.413625002 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 70 | |
Mai 2, 2015 17:01:21.413635969 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 71 | |
Mai 2, 2015 17:01:21.413727045 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 71 | |
Mai 2, 2015 17:01:21.413969040 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 73 | |
Mai 2, 2015 17:01:21.413975954 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 74 | |
Mai 2, 2015 17:01:21.413980007 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 76 | |
Mai 2, 2015 17:01:21.413983107 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 77 | |
Mai 2, 2015 17:01:21.413985968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 79 | |
Mai 2, 2015 17:01:21.414083958 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 79 | |
Mai 2, 2015 17:01:21.414268970 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 80 | |
Mai 2, 2015 17:01:21.414274931 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 82 | |
Mai 2, 2015 17:01:21.414278030 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 83 | |
Mai 2, 2015 17:01:21.414280891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 85 | |
Mai 2, 2015 17:01:21.414376974 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 86 | |
Mai 2, 2015 17:01:21.685549974 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 87 | |
Mai 2, 2015 17:01:21.694536924 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 88 | |
Mai 2, 2015 17:01:21.694545984 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 90 | |
Mai 2, 2015 17:01:21.694554090 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 90 | |
Mai 2, 2015 17:01:21.697665930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 92 | |
Mai 2, 2015 17:01:21.697674036 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 93 | |
Mai 2, 2015 17:01:21.697680950 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 94 | |
Mai 2, 2015 17:01:21.712910891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 94 | |
Mai 2, 2015 17:01:21.785517931 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 95 | |
Mai 2, 2015 17:01:21.795214891 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 97 | |
Mai 2, 2015 17:01:21.795222998 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 98 | |
Mai 2, 2015 17:01:21.795241117 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 99 | |
Mai 2, 2015 17:01:21.795245886 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 101 | |
Mai 2, 2015 17:01:21.795248985 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 102 | |
Mai 2, 2015 17:01:21.795337915 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 103 | |
Mai 2, 2015 17:01:21.795429945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 104 | |
Mai 2, 2015 17:01:21.795435905 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 106 | |
Mai 2, 2015 17:01:21.795517921 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 107 | |
Mai 2, 2015 17:01:21.813838959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 108 | |
Mai 2, 2015 17:01:21.813846111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 110 | |
Mai 2, 2015 17:01:21.813862085 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 111 | |
Mai 2, 2015 17:01:21.813935041 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 112 | |
Mai 2, 2015 17:01:21.813955069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 113 | |
Mai 2, 2015 17:01:21.814045906 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 114 | |
Mai 2, 2015 17:01:21.890064955 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 115 | |
Mai 2, 2015 17:01:21.890074968 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 117 | |
Mai 2, 2015 17:01:21.890079975 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 118 | |
Mai 2, 2015 17:01:21.890165091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 119 | |
Mai 2, 2015 17:01:21.890219927 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 121 | |
Mai 2, 2015 17:01:21.890227079 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 122 | |
Mai 2, 2015 17:01:21.890270948 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 123 | |
Mai 2, 2015 17:01:21.908524036 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 125 | |
Mai 2, 2015 17:01:21.908533096 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 126 | |
Mai 2, 2015 17:01:21.908535957 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 127 | |
Mai 2, 2015 17:01:22.088690042 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 127 | |
Mai 2, 2015 17:01:22.098606110 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 129 | |
Mai 2, 2015 17:01:22.098613977 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 130 | |
Mai 2, 2015 17:01:22.098617077 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 131 | |
Mai 2, 2015 17:01:22.098952055 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 133 | |
Mai 2, 2015 17:01:22.098958969 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 134 | |
Mai 2, 2015 17:01:22.098962069 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 135 | |
Mai 2, 2015 17:01:22.098964930 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 137 | |
Mai 2, 2015 17:01:22.098968029 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 138 | |
Mai 2, 2015 17:01:22.099046946 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 139 | |
Mai 2, 2015 17:01:22.103864908 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 141 | |
Mai 2, 2015 17:01:22.103882074 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 142 | |
Mai 2, 2015 17:01:22.103884935 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 143 | |
Mai 2, 2015 17:01:22.103977919 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 144 | |
Mai 2, 2015 17:01:22.107218981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 145 | |
Mai 2, 2015 17:01:22.107225895 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 147 | |
Mai 2, 2015 17:01:22.107228994 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 147 | |
Mai 2, 2015 17:01:22.188052893 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 149 | |
Mai 2, 2015 17:01:22.188064098 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 150 | |
Mai 2, 2015 17:01:22.188066959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 151 | |
Mai 2, 2015 17:01:22.188205004 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 152 | |
Mai 2, 2015 17:01:22.188235044 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 153 | |
Mai 2, 2015 17:01:22.188241959 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 155 | |
Mai 2, 2015 17:01:22.188316107 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 156 | |
Mai 2, 2015 17:01:22.283652067 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 157 | |
Mai 2, 2015 17:01:22.283658981 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 159 | |
Mai 2, 2015 17:01:22.283662081 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 160 | |
Mai 2, 2015 17:01:22.283664942 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 162 | |
Mai 2, 2015 17:01:22.283667088 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 163 | |
Mai 2, 2015 17:01:22.283771038 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 164 | |
Mai 2, 2015 17:01:22.283801079 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 165 | |
Mai 2, 2015 17:01:22.283806086 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 167 | |
Mai 2, 2015 17:01:22.283807993 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 168 | |
Mai 2, 2015 17:01:22.283896923 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 168 | |
Mai 2, 2015 17:01:22.284019947 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 170 | |
Mai 2, 2015 17:01:22.284024000 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 171 | |
Mai 2, 2015 17:01:22.284025908 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 172 | |
Mai 2, 2015 17:01:22.284029007 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 174 | |
Mai 2, 2015 17:01:22.284030914 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 175 | |
Mai 2, 2015 17:01:22.284097910 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 176 | |
Mai 2, 2015 17:01:22.284172058 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 177 | |
Mai 2, 2015 17:01:22.284177065 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 179 | |
Mai 2, 2015 17:01:22.284181118 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 180 | |
Mai 2, 2015 17:01:22.288131952 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 181 | |
Mai 2, 2015 17:01:22.385741949 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 182 | |
Mai 2, 2015 17:01:22.395200014 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 183 | |
Mai 2, 2015 17:01:22.395206928 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 185 | |
Mai 2, 2015 17:01:22.395209074 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 185 | |
Mai 2, 2015 17:01:22.395505905 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 187 | |
Mai 2, 2015 17:01:22.395512104 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 188 | |
Mai 2, 2015 17:01:22.395514965 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 189 | |
Mai 2, 2015 17:01:22.395517111 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 191 | |
Mai 2, 2015 17:01:22.395519972 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 192 | |
Mai 2, 2015 17:01:22.395612955 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 193 | |
Mai 2, 2015 17:01:22.399322987 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 195 | |
Mai 2, 2015 17:01:22.399341106 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 196 | |
Mai 2, 2015 17:01:22.399348021 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 198 | |
Mai 2, 2015 17:01:22.399445057 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 198 | |
Mai 2, 2015 17:01:22.404402971 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 200 | |
Mai 2, 2015 17:01:22.404418945 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 201 | |
Mai 2, 2015 17:01:22.404421091 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 202 | |
Mai 2, 2015 17:01:22.486705065 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 204 | |
Mai 2, 2015 17:01:22.486722946 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 205 | |
Mai 2, 2015 17:01:22.486726046 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 206 | |
Mai 2, 2015 17:01:22.486728907 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 208 | |
Mai 2, 2015 17:01:22.486732006 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 209 | |
Mai 2, 2015 17:01:22.486828089 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 210 | |
Mai 2, 2015 17:01:22.486880064 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 211 | |
Mai 2, 2015 17:01:22.486884117 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 213 | |
Mai 2, 2015 17:01:22.486967087 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 214 | |
Mai 2, 2015 17:01:22.495590925 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 216 | |
Mai 2, 2015 17:01:22.495598078 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 217 | |
Mai 2, 2015 17:01:22.495599985 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 218 | |
Mai 2, 2015 17:01:22.495675087 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 219 | |
Mai 2, 2015 17:01:22.495748043 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 220 | |
Mai 2, 2015 17:01:22.495752096 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 222 | |
Mai 2, 2015 17:01:22.495851040 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 222 | |
Mai 2, 2015 17:01:22.504997015 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 224 | |
Mai 2, 2015 17:01:22.505003929 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 225 | |
Mai 2, 2015 17:01:22.505008936 MESZ | 80 | 49354 | 175.45.125.181 | 192.168.1.12 | 226 | |
Mai 2, 2015 17:01:30.185457945 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 | 230 | |
Mai 2, 2015 17:01:30.465543985 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 230 | |
Mai 2, 2015 17:01:35.126486063 MESZ | 49356 | 80 | 192.168.1.12 | 23.15.7.104 | 230 | |
Mai 2, 2015 17:01:35.272706985 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 231 | |
Mai 2, 2015 17:01:35.273792982 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 232 | |
Mai 2, 2015 17:01:35.273802042 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 234 | |
Mai 2, 2015 17:01:35.273874044 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 235 | |
Mai 2, 2015 17:01:35.288455009 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 236 | |
Mai 2, 2015 17:01:35.288463116 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 238 | |
Mai 2, 2015 17:01:35.288561106 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 239 | |
Mai 2, 2015 17:01:35.290961981 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 240 | |
Mai 2, 2015 17:01:35.290990114 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 242 | |
Mai 2, 2015 17:01:35.291280031 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 243 | |
Mai 2, 2015 17:01:35.310190916 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 244 | |
Mai 2, 2015 17:01:35.310214043 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 246 | |
Mai 2, 2015 17:01:35.310518026 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 247 | |
Mai 2, 2015 17:01:35.350961924 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 248 | |
Mai 2, 2015 17:01:35.350999117 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 250 | |
Mai 2, 2015 17:01:35.351033926 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 251 | |
Mai 2, 2015 17:01:35.351361036 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 252 | |
Mai 2, 2015 17:01:35.351553917 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 253 | |
Mai 2, 2015 17:01:35.351573944 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 255 | |
Mai 2, 2015 17:01:35.351869106 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 255 | |
Mai 2, 2015 17:01:35.365091085 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 257 | |
Mai 2, 2015 17:01:35.365129948 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 258 | |
Mai 2, 2015 17:01:35.365483046 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 259 | |
Mai 2, 2015 17:01:35.366172075 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 261 | |
Mai 2, 2015 17:01:35.366200924 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 262 | |
Mai 2, 2015 17:01:35.366451979 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 263 | |
Mai 2, 2015 17:01:35.368789911 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 264 | |
Mai 2, 2015 17:01:35.368822098 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 266 | |
Mai 2, 2015 17:01:35.368844032 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 267 | |
Mai 2, 2015 17:01:35.369180918 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 268 | |
Mai 2, 2015 17:01:35.369703054 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 269 | |
Mai 2, 2015 17:01:35.369730949 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 270 | |
Mai 2, 2015 17:01:35.369961023 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 272 | |
Mai 2, 2015 17:01:35.370199919 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 273 | |
Mai 2, 2015 17:01:35.370217085 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 275 | |
Mai 2, 2015 17:01:35.370490074 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 275 | |
Mai 2, 2015 17:01:35.381957054 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 277 | |
Mai 2, 2015 17:01:35.381993055 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 278 | |
Mai 2, 2015 17:01:35.382345915 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 279 | |
Mai 2, 2015 17:01:35.598570108 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 280 | |
Mai 2, 2015 17:01:35.598923922 MESZ | 80 | 49356 | 23.15.7.104 | 192.168.1.12 | 282 |
Hooks - Code Manipulation Behavior |
---|
Statistics |
---|
CPU Usage |
---|
Click to jump to process
Memory Usage |
---|
Click to jump to process
High Level Behavior Distribution |
---|
back
Click to dive into process behavior distribution
System Behavior |
---|
General |
---|
Start time: | 17:01:15 |
Start date: | 02/05/2015 |
Path: | C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE |
Wow64 process (32bit): | false |
Commandline: | unknown |
Imagebase: | 0x30000000 |
File size: | 12047560 bytes |
MD5 hash: | 5FEAF6AB43AA477597F9F8DB0E8CB69C |
General |
---|
Start time: | 17:01:16 |
Start date: | 02/05/2015 |
Path: | C:\Windows\System32\svchost.exe |
Wow64 process (32bit): | false |
Commandline: | unknown |
Imagebase: | 0xf00000 |
File size: | 20992 bytes |
MD5 hash: | 54A47F6B5E09A77E61649109C6A08866 |
General |
---|
Start time: | 17:01:21 |
Start date: | 02/05/2015 |
Path: | C:\Users\admin\AppData\Local\Temp\serebok3.exe |
Wow64 process (32bit): | false |
Commandline: | C:\Users\admin\AppData\Local\Temp\serebok3.exe |
Imagebase: | 0x400000 |
File size: | 217088 bytes |
MD5 hash: | 11F6EDD18DB9B298705DE7F981CAC6D4 |
General |
---|
Start time: | 17:01:39 |
Start date: | 02/05/2015 |
Path: | C:\Windows\System32\rundll32.exe |
Wow64 process (32bit): | false |
Commandline: | rundll32.exe C:\Users\admin\AppData\Local\Temp\B396.tmp NotifierInit |
Imagebase: | 0xe90000 |
File size: | 44544 bytes |
MD5 hash: | 51138BEEA3E2C21EC44D0932C71762A8 |
General |
---|
Start time: | 17:01:53 |
Start date: | 02/05/2015 |
Path: | C:\Windows\explorer.exe |
Wow64 process (32bit): | false |
Commandline: | C:\Windows\Explorer.EXE |
Imagebase: | 0x770000 |
File size: | 2616320 bytes |
MD5 hash: | 8B88EBBB05A0E56B7DCC708498C02B3E |
General |
---|
Start time: | 17:02:05 |
Start date: | 02/05/2015 |
Path: | C:\Windows\System32\dwm.exe |
Wow64 process (32bit): | false |
Commandline: | C:\Windows\system32\Dwm.exe |
Imagebase: | 0x380000 |
File size: | 92672 bytes |
MD5 hash: | 505BF4D1CADEB8D4F8BCD08D944DE25D |
Disassembly |
---|
Code Analysis |
---|
Executed Functions |
---|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
Non-executed Functions |
---|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
Execution Graph |
---|
Execution Coverage: | 44.2% |
Dynamic/Decrypted Code Coverage: | 100% |
Signature Coverage: | 0% |
Total number of Nodes: | 10 |
Total number of Limit Nodes: | 2 |
Executed Functions |
---|
APIs |
Strings |
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Non-executed Functions |
---|
Execution Graph |
---|
Execution Coverage: | 20.5% |
Dynamic/Decrypted Code Coverage: | 100% |
Signature Coverage: | 0% |
Total number of Nodes: | 59 |
Total number of Limit Nodes: | 5 |
Executed Functions |
---|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
Non-executed Functions |
---|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
APIs |
|
Strings |
|
Memory Dump Source |
|
|
Joe Sandbox IDA Plugin |
|
Execution Graph |
---|
Execution Coverage: | 3.1% |
Dynamic/Decrypted Code Coverage: | 81.3% |
Signature Coverage: | 0% |
Total number of Nodes: | 523 |
Total number of Limit Nodes: | 61 |
Executed Functions |
---|
Non-executed Functions |
---|