API tools faq
paste
Advertisement
Guest User

bf2042 wfp

a guest
May 18th, 2023
29
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 137.06 KB | Gaming | 0 0
raw download clone embed print report
  1. [STDOUT]
  2. Thu, 18 May 2023 09:26:28 GMT [0.000000] mudwfp_proxy [INFO] Trying to execute the cmd: NET STOP mudwfp
  3. Thu, 18 May 2023 09:26:28 GMT [0.057001] mudwfp_proxy [INFO] Executed the cmd: NET STOP mudwfp (error_code 2)
  4. Thu, 18 May 2023 09:26:28 GMT [0.057001] mudwfp_proxy [INFO] mudwfp_proxy started.
  5. Thu, 18 May 2023 09:26:32 GMT [4.008073] mudwfp_proxy [INFO] vsl| FLOW 657 MUDWFP_filter_reset - reset
  6. Thu, 18 May 2023 09:26:32 GMT [4.008073] mudwfp_proxy [INFO] Reset 0 backend rules
  7. Thu, 18 May 2023 09:26:32 GMT [4.008575] mudwfp_proxy [INFO] vsl| FLOW 658 MUDWFP_filter_add - *|B|10.233.144.1
  8. Thu, 18 May 2023 09:26:32 GMT [4.008575] mudwfp_proxy [INFO] Backend 10.233.144.1 added for process *
  9. Thu, 18 May 2023 09:26:32 GMT [4.009074] mudwfp_proxy [INFO] vsl| FLOW 659 MUDWFP_bypass_reset - reset
  10. Thu, 18 May 2023 09:26:32 GMT [4.009074] mudwfp_proxy [INFO] Reset 0 exclude rules
  11. Thu, 18 May 2023 09:26:32 GMT [4.009573] mudwfp_proxy [INFO] vsl| FLOW 660 MUDWFP_bypass_proc_add - mudfish.exe
  12. Thu, 18 May 2023 09:26:32 GMT [4.009573] mudwfp_proxy [INFO] exclude the process mudfish.exe
  13. Thu, 18 May 2023 09:26:32 GMT [4.009573] mudwfp_proxy [INFO] vsl| FLOW 661 MUDWFP_bypass_proc_add - mudflow.exe
  14. Thu, 18 May 2023 09:26:32 GMT [4.010073] mudwfp_proxy [INFO] exclude the process mudflow.exe
  15. Thu, 18 May 2023 09:26:32 GMT [4.010575] mudwfp_proxy [INFO] vsl| FLOW 662 MUDWFP_bypass_proc_add - mudrun.exe
  16. Thu, 18 May 2023 09:26:32 GMT [4.010575] mudwfp_proxy [INFO] exclude the process mudrun.exe
  17. Thu, 18 May 2023 09:26:32 GMT [4.011076] mudwfp_proxy [INFO] vsl| FLOW 663 MUDWFP_bypass_addr_add - 14.63.213.39/32
  18. Thu, 18 May 2023 09:26:32 GMT [4.011076] mudwfp_proxy [INFO] Exclude the iprange 0x27d53f0e/32
  19. Thu, 18 May 2023 09:26:32 GMT [4.011575] mudwfp_proxy [INFO] vsl| FLOW 664 MUDWFP_bypass_addr_add - 14.63.214.203/32
  20. Thu, 18 May 2023 09:26:32 GMT [4.011575] mudwfp_proxy [INFO] Exclude the iprange 0xcbd63f0e/32
  21. Thu, 18 May 2023 09:26:32 GMT [4.012074] mudwfp_proxy [INFO] vsl| FLOW 665 MUDWFP_bypass_addr_add - 14.63.214.216/32
  22. Thu, 18 May 2023 09:26:32 GMT [4.012074] mudwfp_proxy [INFO] Exclude the iprange 0xd8d63f0e/32
  23. Thu, 18 May 2023 09:26:32 GMT [4.012573] mudwfp_proxy [INFO] vsl| FLOW 666 MUDWFP_bypass_addr_add - 14.63.218.94/32
  24. Thu, 18 May 2023 09:26:32 GMT [4.012573] mudwfp_proxy [INFO] Exclude the iprange 0x5eda3f0e/32
  25. Thu, 18 May 2023 09:26:32 GMT [4.013073] mudwfp_proxy [INFO] vsl| FLOW 667 MUDWFP_bypass_addr_add - 14.63.223.194/32
  26. Thu, 18 May 2023 09:26:32 GMT [4.013073] mudwfp_proxy [INFO] Exclude the iprange 0xc2df3f0e/32
  27. Thu, 18 May 2023 09:26:32 GMT [4.013573] mudwfp_proxy [INFO] vsl| FLOW 668 MUDWFP_bypass_addr_add - 14.63.223.218/32
  28. Thu, 18 May 2023 09:26:32 GMT [4.013573] mudwfp_proxy [INFO] Exclude the iprange 0xdadf3f0e/32
  29. Thu, 18 May 2023 09:26:32 GMT [4.013573] mudwfp_proxy [INFO] vsl| FLOW 669 MUDWFP_bypass_addr_add - 10.0.0.0/8
  30. Thu, 18 May 2023 09:26:32 GMT [4.014073] mudwfp_proxy [INFO] Exclude the iprange 0xa/8
  31. Thu, 18 May 2023 09:26:32 GMT [4.014073] mudwfp_proxy [INFO] vsl| FLOW 670 MUDWFP_bypass_addr_add - 172.16.0.0/12
  32. Thu, 18 May 2023 09:26:32 GMT [4.014575] mudwfp_proxy [INFO] Exclude the iprange 0x10ac/12
  33. Thu, 18 May 2023 09:26:32 GMT [4.014575] mudwfp_proxy [INFO] vsl| FLOW 671 MUDWFP_bypass_addr_add - 192.168.0.0/16
  34. Thu, 18 May 2023 09:26:32 GMT [4.015074] mudwfp_proxy [INFO] Exclude the iprange 0xa8c0/16
  35. Thu, 18 May 2023 09:26:32 GMT [4.015074] mudwfp_proxy [INFO] vsl| FLOW 672 MUDWFP_bypass_addr_add - 224.0.0.0/3
  36. Thu, 18 May 2023 09:26:32 GMT [4.015074] mudwfp_proxy [INFO] Exclude the iprange 0xe0/3
  37. Thu, 18 May 2023 09:26:32 GMT [4.015573] mudwfp_proxy [INFO] vsl| FLOW 673 MUDWFP_bypass_addr_add - 192.168.0.1/32
  38. Thu, 18 May 2023 09:26:32 GMT [4.015573] mudwfp_proxy [INFO] Exclude the iprange 0x100a8c0/32
  39. Thu, 18 May 2023 09:26:32 GMT [4.016073] mudwfp_proxy [INFO] vsl| FLOW 674 MUDWFP_bypass_proc_add - chrome.exe
  40. Thu, 18 May 2023 09:26:32 GMT [4.016073] mudwfp_proxy [INFO] exclude the process chrome.exe
  41. Thu, 18 May 2023 09:26:32 GMT [4.017075] mudwfp_proxy [INFO] MUDWFP driver stopped so let's start it.
  42. Thu, 18 May 2023 09:26:32 GMT [4.028076] mudwfp_proxy [INFO] Connected to the driver.
  43. Thu, 18 May 2023 09:26:32 GMT [4.028076] mudwfp_proxy [INFO] Pushed the filter changes (count 1 filter_all 1) into the MUDWFP driver.
  44. Thu, 18 May 2023 09:26:32 GMT [4.028076] mudwfp_proxy [INFO] Pushed the bypass process changes (count 4) into the MUDWFP driver.
  45. Thu, 18 May 2023 09:26:32 GMT [4.028574] mudwfp_proxy [INFO] Pushed the bypass iprange changes (count 11) into the MUDWFP driver.
  46. Thu, 18 May 2023 09:26:32 GMT [4.085575] tcp_proxy [INFO] Reset all TCP sessions (count 0)
  47. Thu, 18 May 2023 09:26:32 GMT [4.085575] udp_proxy [INFO] Reset all UDP sessions (count 0)
  48. Thu, 18 May 2023 09:26:32 GMT [4.194575] udp_proxy [INFO] new udp session created from System to 169.254.255.255:137
  49. Thu, 18 May 2023 09:26:33 GMT [4.844591] udp_proxy [INFO] new udp session created from steam.exe to 169.254.255.255:27036
  50. Thu, 18 May 2023 09:26:34 GMT [5.682091] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  51. Thu, 18 May 2023 09:26:34 GMT [5.684591] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  52. Thu, 18 May 2023 09:26:34 GMT [5.688093] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  53. Thu, 18 May 2023 09:26:34 GMT [5.712590] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  54. Thu, 18 May 2023 09:26:34 GMT [5.713091] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  55. Thu, 18 May 2023 09:26:34 GMT [5.728092] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  56. Thu, 18 May 2023 09:26:34 GMT [5.970593] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  57. Thu, 18 May 2023 09:26:34 GMT [6.007091] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  58. Thu, 18 May 2023 09:26:35 GMT [6.647803] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  59. Thu, 18 May 2023 09:26:35 GMT [6.687299] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  60. Thu, 18 May 2023 09:26:38 GMT [9.996680] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  61. Thu, 18 May 2023 09:26:39 GMT [11.003639] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.2:53
  62. Thu, 18 May 2023 09:26:40 GMT [11.516426] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  63. Thu, 18 May 2023 09:26:40 GMT [11.672649] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  64. Thu, 18 May 2023 09:26:40 GMT [12.284784] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  65. Thu, 18 May 2023 09:26:41 GMT [12.448284] tcp_proxy [INFO] new tcp session created from svchost.exe to 40.83.240.146:443
  66. Thu, 18 May 2023 09:26:41 GMT [12.629414] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  67. Thu, 18 May 2023 09:26:41 GMT [13.024485] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.72:80
  68. Thu, 18 May 2023 09:26:41 GMT [13.046095] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.209:80
  69. Thu, 18 May 2023 09:26:41 GMT [13.046596] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.209:80
  70. Thu, 18 May 2023 09:26:41 GMT [13.047097] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.209:80
  71. Thu, 18 May 2023 09:26:41 GMT [13.049095] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 72.247.102.125:80
  72. Thu, 18 May 2023 09:26:41 GMT [13.062414] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.209:80
  73. Thu, 18 May 2023 09:26:41 GMT [13.212134] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  74. Thu, 18 May 2023 09:26:42 GMT [13.320133] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 23.15.137.69:80
  75. Thu, 18 May 2023 09:26:42 GMT [13.441706] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 72.247.102.125:443
  76. Thu, 18 May 2023 09:26:42 GMT [13.712824] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 23.15.137.69:443
  77. Thu, 18 May 2023 09:26:43 GMT [14.503384] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 72.247.102.125:443
  78. Thu, 18 May 2023 09:26:43 GMT [14.688891] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  79. Thu, 18 May 2023 09:26:43 GMT [15.288388] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  80. Thu, 18 May 2023 09:26:44 GMT [15.294388] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  81. Thu, 18 May 2023 09:26:44 GMT [15.474888] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 104.18.21.239:443
  82. Thu, 18 May 2023 09:26:44 GMT [15.475388] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 72.247.102.125:443 (client n_received 565 n_sent 17084) (backend n_received 17084 n_sent 577)
  83. Thu, 18 May 2023 09:26:44 GMT [15.486889] tcp_proxy [INFO] new tcp session created from radeonsoftware.exe to 192.108.239.253:443
  84. Thu, 18 May 2023 09:26:45 GMT [16.410471] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 192.108.239.253:443 (client n_received 429 n_sent 33706) (backend n_received 33706 n_sent 441)
  85. Thu, 18 May 2023 09:26:47 GMT [18.375673] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  86. Thu, 18 May 2023 09:26:47 GMT [18.625726] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  87. Thu, 18 May 2023 09:26:50 GMT [21.408773] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  88. Thu, 18 May 2023 09:26:50 GMT [21.917943] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  89. Thu, 18 May 2023 09:26:50 GMT [22.253553] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  90. Thu, 18 May 2023 09:26:50 GMT [22.278052] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.72:80 (client n_received 1128 n_sent 2128) (backend n_received 2128 n_sent 1140)
  91. Thu, 18 May 2023 09:26:50 GMT [22.279052] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.209:80
  92. Thu, 18 May 2023 09:26:51 GMT [22.513996] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  93. Thu, 18 May 2023 09:26:51 GMT [22.985454] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  94. Thu, 18 May 2023 09:27:11 GMT [42.318997] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  95. Thu, 18 May 2023 09:27:11 GMT [42.697398] mudwfp_proxy [INFO] vsl| FLOW 1275 MUDWFP_filter_reset - reset
  96. Thu, 18 May 2023 09:27:11 GMT [42.697398] mudwfp_proxy [INFO] Reset 1 backend rules
  97. Thu, 18 May 2023 09:27:11 GMT [42.697897] mudwfp_proxy [INFO] vsl| FLOW 1276 MUDWFP_filter_add - *|B|10.233.144.1
  98. Thu, 18 May 2023 09:27:11 GMT [42.697897] mudwfp_proxy [INFO] Backend 10.233.144.1 added for process *
  99. Thu, 18 May 2023 09:27:11 GMT [42.698398] mudwfp_proxy [INFO] vsl| FLOW 1277 MUDWFP_bypass_reset - reset
  100. Thu, 18 May 2023 09:27:11 GMT [42.698398] mudwfp_proxy [INFO] Reset 15 exclude rules
  101. Thu, 18 May 2023 09:27:11 GMT [42.698897] mudwfp_proxy [INFO] vsl| FLOW 1278 MUDWFP_bypass_proc_add - mudfish.exe
  102. Thu, 18 May 2023 09:27:11 GMT [42.698897] mudwfp_proxy [INFO] exclude the process mudfish.exe
  103. Thu, 18 May 2023 09:27:11 GMT [42.698897] mudwfp_proxy [INFO] vsl| FLOW 1279 MUDWFP_bypass_proc_add - mudflow.exe
  104. Thu, 18 May 2023 09:27:11 GMT [42.699399] mudwfp_proxy [INFO] exclude the process mudflow.exe
  105. Thu, 18 May 2023 09:27:11 GMT [42.699399] mudwfp_proxy [INFO] vsl| FLOW 1280 MUDWFP_bypass_proc_add - mudrun.exe
  106. Thu, 18 May 2023 09:27:11 GMT [42.699909] mudwfp_proxy [INFO] exclude the process mudrun.exe
  107. Thu, 18 May 2023 09:27:11 GMT [42.700399] mudwfp_proxy [INFO] vsl| FLOW 1281 MUDWFP_bypass_addr_add - 14.63.213.39/32
  108. Thu, 18 May 2023 09:27:11 GMT [42.700399] mudwfp_proxy [INFO] Exclude the iprange 0x27d53f0e/32
  109. Thu, 18 May 2023 09:27:11 GMT [42.700399] mudwfp_proxy [INFO] vsl| FLOW 1282 MUDWFP_bypass_addr_add - 14.63.214.203/32
  110. Thu, 18 May 2023 09:27:11 GMT [42.700899] mudwfp_proxy [INFO] Exclude the iprange 0xcbd63f0e/32
  111. Thu, 18 May 2023 09:27:11 GMT [42.700899] mudwfp_proxy [INFO] vsl| FLOW 1283 MUDWFP_bypass_addr_add - 14.63.214.216/32
  112. Thu, 18 May 2023 09:27:11 GMT [42.701398] mudwfp_proxy [INFO] Exclude the iprange 0xd8d63f0e/32
  113. Thu, 18 May 2023 09:27:11 GMT [42.701398] mudwfp_proxy [INFO] vsl| FLOW 1284 MUDWFP_bypass_addr_add - 14.63.218.94/32
  114. Thu, 18 May 2023 09:27:11 GMT [42.701898] mudwfp_proxy [INFO] Exclude the iprange 0x5eda3f0e/32
  115. Thu, 18 May 2023 09:27:11 GMT [42.701898] mudwfp_proxy [INFO] vsl| FLOW 1285 MUDWFP_bypass_addr_add - 14.63.223.194/32
  116. Thu, 18 May 2023 09:27:11 GMT [42.702398] mudwfp_proxy [INFO] Exclude the iprange 0xc2df3f0e/32
  117. Thu, 18 May 2023 09:27:11 GMT [42.702398] mudwfp_proxy [INFO] vsl| FLOW 1286 MUDWFP_bypass_addr_add - 14.63.223.218/32
  118. Thu, 18 May 2023 09:27:11 GMT [42.702398] mudwfp_proxy [INFO] Exclude the iprange 0xdadf3f0e/32
  119. Thu, 18 May 2023 09:27:11 GMT [42.702897] mudwfp_proxy [INFO] vsl| FLOW 1287 MUDWFP_bypass_addr_add - 10.0.0.0/8
  120. Thu, 18 May 2023 09:27:11 GMT [42.702897] mudwfp_proxy [INFO] Exclude the iprange 0xa/8
  121. Thu, 18 May 2023 09:27:11 GMT [42.703397] mudwfp_proxy [INFO] vsl| FLOW 1288 MUDWFP_bypass_addr_add - 172.16.0.0/12
  122. Thu, 18 May 2023 09:27:11 GMT [42.703397] mudwfp_proxy [INFO] Exclude the iprange 0x10ac/12
  123. Thu, 18 May 2023 09:27:11 GMT [42.703397] mudwfp_proxy [INFO] vsl| FLOW 1289 MUDWFP_bypass_addr_add - 192.168.0.0/16
  124. Thu, 18 May 2023 09:27:11 GMT [42.703897] mudwfp_proxy [INFO] Exclude the iprange 0xa8c0/16
  125. Thu, 18 May 2023 09:27:11 GMT [42.703897] mudwfp_proxy [INFO] vsl| FLOW 1290 MUDWFP_bypass_addr_add - 224.0.0.0/3
  126. Thu, 18 May 2023 09:27:11 GMT [42.703897] mudwfp_proxy [INFO] Exclude the iprange 0xe0/3
  127. Thu, 18 May 2023 09:27:11 GMT [42.704397] mudwfp_proxy [INFO] vsl| FLOW 1291 MUDWFP_bypass_addr_add - 192.168.0.1/32
  128. Thu, 18 May 2023 09:27:11 GMT [42.704397] mudwfp_proxy [INFO] Exclude the iprange 0x100a8c0/32
  129. Thu, 18 May 2023 09:27:11 GMT [42.704897] mudwfp_proxy [INFO] vsl| FLOW 1292 MUDWFP_bypass_proc_add - steam.exe
  130. Thu, 18 May 2023 09:27:11 GMT [42.704897] mudwfp_proxy [INFO] exclude the process steam.exe
  131. Thu, 18 May 2023 09:27:11 GMT [42.704897] mudwfp_proxy [INFO] Pushed the filter changes (count 1 filter_all 1) into the MUDWFP driver.
  132. Thu, 18 May 2023 09:27:11 GMT [42.705398] mudwfp_proxy [INFO] Pushed the bypass process changes (count 4) into the MUDWFP driver.
  133. Thu, 18 May 2023 09:27:11 GMT [42.705398] mudwfp_proxy [INFO] Pushed the bypass iprange changes (count 11) into the MUDWFP driver.
  134. Thu, 18 May 2023 09:27:11 GMT [42.902400] tcp_proxy [INFO] new tcp session created from chrome.exe to 172.105.228.51:443
  135. Thu, 18 May 2023 09:27:11 GMT [42.902898] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.209:80 (client n_received 2038 n_sent 368) (backend n_received 368 n_sent 2050)
  136. Thu, 18 May 2023 09:27:11 GMT [42.903398] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.209:80 (client n_received 413 n_sent 361) (backend n_received 361 n_sent 425)
  137. Thu, 18 May 2023 09:27:11 GMT [42.903398] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 23.15.137.69:80 (client n_received 244 n_sent 251) (backend n_received 251 n_sent 256)
  138. Thu, 18 May 2023 09:27:11 GMT [42.904398] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.209:80 (client n_received 1231 n_sent 906) (backend n_received 906 n_sent 1243)
  139. Thu, 18 May 2023 09:27:11 GMT [42.904898] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 72.247.102.125:80 (client n_received 204 n_sent 212) (backend n_received 212 n_sent 216)
  140. Thu, 18 May 2023 09:27:11 GMT [42.905398] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.209:80 (client n_received 1748 n_sent 1951) (backend n_received 1951 n_sent 1760)
  141. Thu, 18 May 2023 09:27:11 GMT [42.905897] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.209:80 (client n_received 1895 n_sent 729) (backend n_received 729 n_sent 1907)
  142. Thu, 18 May 2023 09:27:11 GMT [42.905897] tcp_proxy [INFO] tcpp_sess done: procname svchost.exe dst 40.83.240.146:443 (client n_received 2007 n_sent 4957) (backend n_received 4957 n_sent 2019)
  143. Thu, 18 May 2023 09:27:11 GMT [42.906397] tcp_proxy [INFO] Reset all TCP sessions (count 18)
  144. Thu, 18 May 2023 09:27:12 GMT [43.610023] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  145. Thu, 18 May 2023 09:27:12 GMT [43.610023] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 125 n_sent 0)
  146. Thu, 18 May 2023 09:27:12 GMT [43.610525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  147. Thu, 18 May 2023 09:27:12 GMT [43.610525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  148. Thu, 18 May 2023 09:27:12 GMT [43.610525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  149. Thu, 18 May 2023 09:27:12 GMT [43.611025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  150. Thu, 18 May 2023 09:27:12 GMT [43.611025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  151. Thu, 18 May 2023 09:27:12 GMT [43.611524] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 123 n_sent 0)
  152. Thu, 18 May 2023 09:27:12 GMT [43.611524] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  153. Thu, 18 May 2023 09:27:12 GMT [43.611524] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  154. Thu, 18 May 2023 09:27:12 GMT [43.612025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  155. Thu, 18 May 2023 09:27:12 GMT [43.612025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  156. Thu, 18 May 2023 09:27:12 GMT [43.612523] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  157. Thu, 18 May 2023 09:27:12 GMT [43.612523] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 136 n_sent 0)
  158. Thu, 18 May 2023 09:27:12 GMT [43.613026] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  159. Thu, 18 May 2023 09:27:12 GMT [43.613026] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  160. Thu, 18 May 2023 09:27:12 GMT [43.613026] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 129 n_sent 0)
  161. Thu, 18 May 2023 09:27:12 GMT [43.613525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  162. Thu, 18 May 2023 09:27:12 GMT [43.613525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 387 n_sent 0)
  163. Thu, 18 May 2023 09:27:12 GMT [43.614025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 516 n_sent 0)
  164. Thu, 18 May 2023 09:27:12 GMT [43.614025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 378 n_sent 0)
  165. Thu, 18 May 2023 09:27:12 GMT [43.614025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 504 n_sent 0)
  166. Thu, 18 May 2023 09:27:12 GMT [43.614525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 387 n_sent 0)
  167. Thu, 18 May 2023 09:27:12 GMT [43.614525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 390 n_sent 0)
  168. Thu, 18 May 2023 09:27:12 GMT [43.615025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.2:53 (kernel n_received 512 n_sent 0)
  169. Thu, 18 May 2023 09:27:12 GMT [43.615025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 516 n_sent 0)
  170. Thu, 18 May 2023 09:27:12 GMT [43.615025] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 520 n_sent 0)
  171. Thu, 18 May 2023 09:27:12 GMT [43.615525] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 384 n_sent 0)
  172. Thu, 18 May 2023 09:27:12 GMT [43.615525] udp_proxy [INFO] udpp_sess done: procname steam.exe dst 169.254.255.255:27036 (kernel n_received 567 n_sent 0)
  173. Thu, 18 May 2023 09:27:12 GMT [43.616025] udp_proxy [INFO] udpp_sess done: procname System dst 169.254.255.255:137 (kernel n_received 2844 n_sent 0)
  174. Thu, 18 May 2023 09:27:12 GMT [43.616025] udp_proxy [INFO] Reset all UDP sessions (count 30)
  175. Thu, 18 May 2023 09:27:12 GMT [43.919572] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 23.15.137.69:443 (client n_received 602 n_sent 4481) (backend n_received 4481 n_sent 614)
  176. Thu, 18 May 2023 09:27:12 GMT [43.919572] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 72.247.102.125:443 (client n_received 608 n_sent 4687) (backend n_received 4687 n_sent 620)
  177. Thu, 18 May 2023 09:27:12 GMT [43.920070] tcp_proxy [INFO] tcpp_sess done: procname radeonsoftware.exe dst 104.18.21.239:443 (client n_received 627 n_sent 4647) (backend n_received 4647 n_sent 639)
  178. Thu, 18 May 2023 09:27:20 GMT [51.694642] tcp_proxy [INFO] new tcp session created from svchost.exe to 40.83.240.146:443
  179. Thu, 18 May 2023 09:27:20 GMT [51.724954] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  180. Thu, 18 May 2023 09:27:20 GMT [52.232951] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  181. Thu, 18 May 2023 09:27:21 GMT [52.488964] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  182. Thu, 18 May 2023 09:27:21 GMT [52.728412] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  183. Thu, 18 May 2023 09:27:21 GMT [52.894932] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  184. Thu, 18 May 2023 09:27:21 GMT [52.922480] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  185. Thu, 18 May 2023 09:27:21 GMT [52.929481] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  186. Thu, 18 May 2023 09:27:21 GMT [53.006768] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  187. Thu, 18 May 2023 09:27:21 GMT [53.006768] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  188. Thu, 18 May 2023 09:27:22 GMT [53.540141] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  189. Thu, 18 May 2023 09:27:27 GMT [58.877874] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  190. Thu, 18 May 2023 09:27:27 GMT [58.925875] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  191. Thu, 18 May 2023 09:27:28 GMT [59.612245] tcp_proxy [INFO] new tcp session created from link2ea.exe to 23.64.202.8:443
  192. Thu, 18 May 2023 09:27:28 GMT [60.073274] mudwfp_proxy [INFO] n_buffer_list_too_big 0 n_buffer_list_contbuf 0 n_buffer_list_zero_length 0 n_buffer_list_copy_failed 0 n_nonpagepool_alloc 204 n_nonpagepool_free 102 n_nonpagepool_udp_classify_alloc 81 n_nonpagepool_udp_classify_free 81 n_nonpagepool_flow_context_alloc 983 n_nonpagepool_flow_context_free 976
  193. Thu, 18 May 2023 09:27:28 GMT [60.126802] tcp_proxy [INFO] tcp_proxy stat: n_eps 15 n_sess 8 n_c_connaborted 0 n_c_connreset 1 n_b_connaborted 0 n_b_connreset 0 n_hit_fdsetsize 0
  194. Thu, 18 May 2023 09:27:28 GMT [60.152166] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  195. Thu, 18 May 2023 09:27:28 GMT [60.152166] udp_proxy [INFO] udp_proxy stat: n_sess 8 n_invalid_magics 0 n_drop_broadcast 0
  196. Thu, 18 May 2023 09:27:28 GMT [60.152666] udp_proxy [INFO] udp_proxy stat: n_kernel_sent 6870 n_kernel_received 11352 n_user_sent 4300 n_user_received 3878
  197. Thu, 18 May 2023 09:27:28 GMT [60.152666] udp_proxy [INFO] udp_proxy stat: kernel_sent_bytes 6870 kernel_received_bytes 11352 user_sent_bytes 4300 user_received_bytes 3878
  198. Thu, 18 May 2023 09:27:28 GMT [60.242176] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  199. Thu, 18 May 2023 09:27:29 GMT [60.425661] tcp_proxy [INFO] new tcp session created from link2ea.exe to 23.64.202.8:443
  200. Thu, 18 May 2023 09:27:29 GMT [60.476726] tcp_proxy [INFO] new tcp session created from link2ea.exe to 184.86.196.184:443
  201. Thu, 18 May 2023 09:27:33 GMT [64.923407] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2391 n_sent 1805) (backend n_received 1805 n_sent 2403)
  202. Thu, 18 May 2023 09:27:33 GMT [64.923908] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  203. Thu, 18 May 2023 09:27:33 GMT [64.932409] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2907 n_sent 2166) (backend n_received 2166 n_sent 2919)
  204. Thu, 18 May 2023 09:27:33 GMT [64.932908] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  205. Thu, 18 May 2023 09:27:33 GMT [65.207409] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  206. Thu, 18 May 2023 09:27:34 GMT [65.322912] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  207. Thu, 18 May 2023 09:27:34 GMT [65.323912] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 23.64.202.8:443
  208. Thu, 18 May 2023 09:27:34 GMT [65.376891] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2661 n_sent 1628) (backend n_received 1628 n_sent 2673)
  209. Thu, 18 May 2023 09:27:34 GMT [65.377391] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  210. Thu, 18 May 2023 09:27:34 GMT [65.561983] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 184.86.196.184:443
  211. Thu, 18 May 2023 09:27:34 GMT [65.757983] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2804 n_sent 3211) (backend n_received 3211 n_sent 2816)
  212. Thu, 18 May 2023 09:27:34 GMT [65.758483] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  213. Thu, 18 May 2023 09:27:34 GMT [66.090984] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 23.64.202.8:443
  214. Thu, 18 May 2023 09:27:34 GMT [66.105987] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  215. Thu, 18 May 2023 09:27:34 GMT [66.111481] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 184.86.196.184:443
  216. Thu, 18 May 2023 09:27:35 GMT [66.530495] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 184.86.196.184:443
  217. Thu, 18 May 2023 09:27:35 GMT [66.585498] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2606 n_sent 1989) (backend n_received 1989 n_sent 2618)
  218. Thu, 18 May 2023 09:27:35 GMT [66.585997] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  219. Thu, 18 May 2023 09:27:35 GMT [67.116232] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  220. Thu, 18 May 2023 09:27:36 GMT [67.408232] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.18.68.5:443
  221. Thu, 18 May 2023 09:27:36 GMT [67.409233] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.18.68.5:443
  222. Thu, 18 May 2023 09:27:36 GMT [68.200233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  223. Thu, 18 May 2023 09:27:37 GMT [68.367732] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 159.153.191.240:443
  224. Thu, 18 May 2023 09:27:37 GMT [68.747233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  225. Thu, 18 May 2023 09:27:37 GMT [68.756233] tcp_proxy [INFO] new tcp session created from chrome.exe to 54.85.118.96:443
  226. Thu, 18 May 2023 09:27:37 GMT [68.811731] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  227. Thu, 18 May 2023 09:27:37 GMT [68.811731] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  228. Thu, 18 May 2023 09:27:37 GMT [69.001731] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.250.69.206:443
  229. Thu, 18 May 2023 09:27:37 GMT [69.161731] tcp_proxy [INFO] new tcp session created from chrome.exe to 52.84.162.5:443
  230. Thu, 18 May 2023 09:27:37 GMT [69.161731] tcp_proxy [INFO] new tcp session created from chrome.exe to 52.84.162.5:443
  231. Thu, 18 May 2023 09:27:37 GMT [69.164232] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  232. Thu, 18 May 2023 09:27:38 GMT [69.584233] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  233. Thu, 18 May 2023 09:27:38 GMT [69.806233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  234. Thu, 18 May 2023 09:27:38 GMT [69.885232] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  235. Thu, 18 May 2023 09:27:38 GMT [69.966232] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.215.232:443
  236. Thu, 18 May 2023 09:27:38 GMT [70.046232] tcp_proxy [INFO] new tcp session created from chrome.exe to 172.217.14.226:443
  237. Thu, 18 May 2023 09:27:38 GMT [70.057232] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  238. Thu, 18 May 2023 09:27:38 GMT [70.063231] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  239. Thu, 18 May 2023 09:27:38 GMT [70.070233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  240. Thu, 18 May 2023 09:27:38 GMT [70.096232] tcp_proxy [INFO] new tcp session created from chrome.exe to 52.84.162.5:443
  241. Thu, 18 May 2023 09:27:38 GMT [70.218233] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.33.74:443
  242. Thu, 18 May 2023 09:27:39 GMT [70.337731] tcp_proxy [INFO] new tcp session created from chrome.exe to 52.84.160.180:443
  243. Thu, 18 May 2023 09:27:39 GMT [70.414232] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.215.232:443
  244. Thu, 18 May 2023 09:27:39 GMT [70.415733] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  245. Thu, 18 May 2023 09:27:39 GMT [70.415733] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  246. Thu, 18 May 2023 09:27:39 GMT [70.416732] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  247. Thu, 18 May 2023 09:27:39 GMT [70.417232] tcp_proxy [INFO] new tcp session created from chrome.exe to 3.39.186.83:443
  248. Thu, 18 May 2023 09:27:39 GMT [70.417733] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  249. Thu, 18 May 2023 09:27:39 GMT [70.417733] udp_proxy [INFO] Thu, 18 May 2023 09:27:39 GMT [70.418232] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  250. new udp session created from svchost.exe to 168.126.63.1:53
  251. Thu, 18 May 2023 09:27:39 GMT [70.506732] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 52.84.162.5:443 (client n_received 517 n_sent 5480) (backend n_received 5480 n_sent 529)
  252. Thu, 18 May 2023 09:27:39 GMT [70.537732] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 1428 n_sent 49956) (backend n_received 49956 n_sent 1440)
  253. Thu, 18 May 2023 09:27:39 GMT [70.538231] tcp_proxy [INFO] new tcp session created from chrome.exe to 210.114.17.111:443
  254. Thu, 18 May 2023 09:27:39 GMT [70.584230] tcp_proxy [INFO] new tcp session created from chrome.exe to 69.16.175.42:443
  255. Thu, 18 May 2023 09:27:39 GMT [70.599733] tcp_proxy [INFO] new tcp session created from chrome.exe to 69.16.175.42:443
  256. Thu, 18 May 2023 09:27:39 GMT [70.615231] tcp_proxy [INFO] new tcp session created from chrome.exe to 69.16.175.42:443
  257. Thu, 18 May 2023 09:27:39 GMT [70.630731] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.17.25.14:443
  258. Thu, 18 May 2023 09:27:39 GMT [70.658230] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  259. Thu, 18 May 2023 09:27:39 GMT [70.832231] tcp_proxy [INFO] new tcp session created from chrome.exe to 13.33.185.202:443
  260. Thu, 18 May 2023 09:27:39 GMT [70.847731] tcp_proxy [INFO] new tcp session created from chrome.exe to 13.33.185.202:443
  261. Thu, 18 May 2023 09:27:39 GMT [70.894232] tcp_proxy [INFO] new tcp session created from chrome.exe to 13.33.185.202:443
  262. Thu, 18 May 2023 09:27:39 GMT [70.914231] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  263. Thu, 18 May 2023 09:27:39 GMT [71.080231] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.33.110:443
  264. Thu, 18 May 2023 09:27:40 GMT [71.418231] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  265. Thu, 18 May 2023 09:27:40 GMT [71.418731] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  266. Thu, 18 May 2023 09:27:40 GMT [71.505233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  267. Thu, 18 May 2023 09:27:40 GMT [71.591731] tcp_proxy [INFO] new tcp session created from chrome.exe to 216.239.38.181:443
  268. Thu, 18 May 2023 09:27:40 GMT [71.622732] tcp_proxy [INFO] new tcp session created from chrome.exe to 173.194.202.155:443
  269. Thu, 18 May 2023 09:27:40 GMT [71.669231] tcp_proxy [INFO] new tcp session created from link2ea.exe to 159.153.191.240:443
  270. Thu, 18 May 2023 09:27:40 GMT [71.865232] udp_proxy [INFO] new udp session created from chrome.exe to 142.251.215.232:443
  271. Thu, 18 May 2023 09:27:40 GMT [71.932730] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.33.74:443
  272. Thu, 18 May 2023 09:27:40 GMT [72.025731] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 69.16.175.42:443 (client n_received 517 n_sent 11269) (backend n_received 11269 n_sent 529)
  273. Thu, 18 May 2023 09:27:40 GMT [72.025731] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 69.16.175.42:443 (client n_received 517 n_sent 11269) (backend n_received 11269 n_sent 529)
  274. Thu, 18 May 2023 09:27:40 GMT [72.064233] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  275. Thu, 18 May 2023 09:27:40 GMT [72.065733] udp_proxy [INFO] new udp session created from chrome.exe to 142.251.215.232:443
  276. Thu, 18 May 2023 09:27:40 GMT [72.118732] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.251.33.110:443
  277. Thu, 18 May 2023 09:27:40 GMT [72.227234] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 13.33.185.202:443 (client n_received 517 n_sent 2620) (backend n_received 5240 n_sent 529)
  278. Thu, 18 May 2023 09:27:40 GMT [72.227234] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 13.33.185.202:443 (client n_received 517 n_sent 6022) (backend n_received 6022 n_sent 529)
  279. Thu, 18 May 2023 09:27:41 GMT [72.573731] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  280. Thu, 18 May 2023 09:27:41 GMT [72.738730] tcp_proxy [INFO] new tcp session created from chrome.exe to 142.250.217.98:443
  281. Thu, 18 May 2023 09:27:41 GMT [72.754230] tcp_proxy [INFO] new tcp session created from chrome.exe to 23.195.105.203:443
  282. Thu, 18 May 2023 09:27:41 GMT [72.835732] udp_proxy [INFO] new udp session created from chrome.exe to 142.250.69.206:443
  283. Thu, 18 May 2023 09:27:41 GMT [72.847734] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  284. Thu, 18 May 2023 09:27:41 GMT [72.862732] tcp_proxy [INFO] new tcp session created from chrome.exe to 173.194.202.155:443
  285. Thu, 18 May 2023 09:27:41 GMT [72.863232] tcp_proxy [INFO] new tcp session created from chrome.exe to 216.239.38.181:443
  286. Thu, 18 May 2023 09:27:41 GMT [72.895731] udp_proxy [INFO] new udp session created from chrome.exe to 142.251.33.110:443
  287. Thu, 18 May 2023 09:27:41 GMT [73.141730] tcp_proxy [INFO] new tcp session created from link2ea.exe to 23.54.48.157:443
  288. Thu, 18 May 2023 09:27:42 GMT [73.364230] tcp_proxy [INFO] new tcp session created from link2ea.exe to 23.54.48.157:443
  289. Thu, 18 May 2023 09:27:43 GMT [74.404731] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  290. Thu, 18 May 2023 09:27:43 GMT [74.460230] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 184.86.196.184:443
  291. Thu, 18 May 2023 09:27:43 GMT [74.474730] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 23.64.202.8:443
  292. Thu, 18 May 2023 09:27:45 GMT [76.432731] udp_proxy [INFO] new udp session created from chrome.exe to 216.239.38.181:443
  293. Thu, 18 May 2023 09:27:45 GMT [76.603232] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  294. Thu, 18 May 2023 09:27:45 GMT [76.603732] udp_proxy [INFO] new udp session created from chrome.exe to 142.251.33.110:443
  295. Thu, 18 May 2023 09:27:45 GMT [76.908232] tcp_proxy [INFO] new tcp session created from chrome.exe to 172.105.228.51:443
  296. Thu, 18 May 2023 09:27:46 GMT [77.745232] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 172.105.228.51:443 (client n_received 1209 n_sent 472) (backend n_received 472 n_sent 1221)
  297. Thu, 18 May 2023 09:27:46 GMT [77.915732] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 159.153.191.240:443 (client n_received 2218 n_sent 5677) (backend n_received 5677 n_sent 2230)
  298. Thu, 18 May 2023 09:27:46 GMT [77.946732] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 23.54.48.157:443 (client n_received 940 n_sent 7476) (backend n_received 7476 n_sent 952)
  299. Thu, 18 May 2023 09:27:46 GMT [77.946732] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 23.54.48.157:443 (client n_received 838 n_sent 7423) (backend n_received 7423 n_sent 850)
  300. Thu, 18 May 2023 09:27:46 GMT [77.947232] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 23.64.202.8:443 (client n_received 13059 n_sent 12651) (backend n_received 12651 n_sent 13071)
  301. Thu, 18 May 2023 09:27:46 GMT [77.947731] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 23.64.202.8:443 (client n_received 911 n_sent 6972) (backend n_received 6972 n_sent 923)
  302. Thu, 18 May 2023 09:27:46 GMT [77.947731] tcp_proxy [INFO] tcpp_sess done: procname link2ea.exe dst 184.86.196.184:443 (client n_received 3598 n_sent 9100) (backend n_received 9100 n_sent 3610)
  303. Thu, 18 May 2023 09:27:46 GMT [78.101731] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 159.153.191.240:443 (client n_received 2608 n_sent 4217) (backend n_received 4217 n_sent 2620)
  304. Thu, 18 May 2023 09:27:47 GMT [78.366232] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  305. Thu, 18 May 2023 09:27:47 GMT [78.586212] udp_proxy [INFO] new udp session created from chrome.exe to 31.13.66.174:443
  306. Thu, 18 May 2023 09:27:47 GMT [78.601147] udp_proxy [INFO] new udp session created from chrome.exe to 216.239.38.181:443
  307. Thu, 18 May 2023 09:27:47 GMT [79.045691] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 159.153.191.240:443
  308. Thu, 18 May 2023 09:27:49 GMT [80.647923] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 159.153.191.240:443
  309. Thu, 18 May 2023 09:27:51 GMT [82.604420] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 54.85.118.96:443 (client n_received 3155 n_sent 438) (backend n_received 438 n_sent 3167)
  310. Thu, 18 May 2023 09:27:51 GMT [82.610422] udp_proxy [INFO] new udp session created from chrome.exe to 142.250.217.98:443
  311. Thu, 18 May 2023 09:27:51 GMT [83.224330] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 23.54.48.157:443
  312. Thu, 18 May 2023 09:27:51 GMT [83.239827] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 184.86.196.184:443
  313. Thu, 18 May 2023 09:27:52 GMT [83.306861] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  314. Thu, 18 May 2023 09:27:52 GMT [83.549995] tcp_proxy [INFO] new tcp session created from chrome.exe to 54.85.118.96:443
  315. Thu, 18 May 2023 09:27:52 GMT [83.908862] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  316. Thu, 18 May 2023 09:27:52 GMT [83.917860] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  317. Thu, 18 May 2023 09:27:52 GMT [83.936130] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  318. Thu, 18 May 2023 09:27:52 GMT [83.937130] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  319. Thu, 18 May 2023 09:27:52 GMT [83.965652] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  320. Thu, 18 May 2023 09:27:52 GMT [83.967651] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2609 n_sent 1628) (backend n_received 1628 n_sent 2621)
  321. Thu, 18 May 2023 09:27:52 GMT [83.976652] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2618 n_sent 2673) (backend n_received 2673 n_sent 2630)
  322. Thu, 18 May 2023 09:27:52 GMT [83.983518] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  323. Thu, 18 May 2023 09:27:52 GMT [84.107016] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 184.86.196.184:443
  324. Thu, 18 May 2023 09:27:52 GMT [84.153517] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2989 n_sent 4947) (backend n_received 4947 n_sent 3001)
  325. Thu, 18 May 2023 09:27:52 GMT [84.188016] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  326. Thu, 18 May 2023 09:27:52 GMT [84.223016] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.35.109.225:443
  327. Thu, 18 May 2023 09:27:52 GMT [84.231016] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 34.225.170.169:443
  328. Thu, 18 May 2023 09:27:52 GMT [84.246516] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 34.225.170.169:443
  329. Thu, 18 May 2023 09:27:52 GMT [84.247016] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  330. Thu, 18 May 2023 09:27:52 GMT [84.262017] tcp_proxy [INFO] new tcp session created from chrome.exe to 52.84.162.98:443
  331. Thu, 18 May 2023 09:27:52 GMT [84.263016] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2121 n_sent 1628) (backend n_received 1628 n_sent 2133)
  332. Thu, 18 May 2023 09:27:53 GMT [84.370516] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  333. Thu, 18 May 2023 09:27:53 GMT [84.386017] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  334. Thu, 18 May 2023 09:27:53 GMT [84.401516] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  335. Thu, 18 May 2023 09:27:53 GMT [84.417017] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  336. Thu, 18 May 2023 09:27:53 GMT [84.463516] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 3.222.143.212:443
  337. Thu, 18 May 2023 09:27:53 GMT [84.928895] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  338. Thu, 18 May 2023 09:27:53 GMT [84.989939] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  339. Thu, 18 May 2023 09:27:53 GMT [84.990440] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2427 n_sent 2857) (backend n_received 2857 n_sent 2439)
  340. Thu, 18 May 2023 09:27:53 GMT [85.128883] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.18.27.208:443
  341. Thu, 18 May 2023 09:27:53 GMT [85.154384] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  342. Thu, 18 May 2023 09:27:54 GMT [85.314635] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 142.251.215.232:443
  343. Thu, 18 May 2023 09:27:54 GMT [85.860173] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  344. Thu, 18 May 2023 09:27:54 GMT [85.893205] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  345. Thu, 18 May 2023 09:27:54 GMT [85.894205] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  346. Thu, 18 May 2023 09:27:54 GMT [86.025830] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 162.159.133.233:443
  347. Thu, 18 May 2023 09:27:54 GMT [86.074328] udp_proxy [INFO] new udp session created from chrome.exe to 142.251.215.228:443
  348. Thu, 18 May 2023 09:27:54 GMT [86.149826] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 3.232.147.57:443
  349. Thu, 18 May 2023 09:27:54 GMT [86.165330] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 3.232.147.57:443
  350. Thu, 18 May 2023 09:27:55 GMT [86.313329] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  351. Thu, 18 May 2023 09:27:55 GMT [86.350830] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  352. Thu, 18 May 2023 09:27:55 GMT [86.490866] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.202.207.69:443
  353. Thu, 18 May 2023 09:27:55 GMT [86.508001] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  354. Thu, 18 May 2023 09:27:55 GMT [86.513091] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  355. Thu, 18 May 2023 09:27:55 GMT [86.520313] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  356. Thu, 18 May 2023 09:27:55 GMT [86.521813] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  357. Thu, 18 May 2023 09:27:55 GMT [86.522313] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  358. Thu, 18 May 2023 09:27:55 GMT [86.691892] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 142.251.33.112:443
  359. Thu, 18 May 2023 09:27:55 GMT [86.691892] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 52.72.96.128:443
  360. Thu, 18 May 2023 09:27:55 GMT [86.707416] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 52.72.96.128:443
  361. Thu, 18 May 2023 09:27:55 GMT [86.722690] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 52.72.96.128:443
  362. Thu, 18 May 2023 09:27:55 GMT [86.753691] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 52.72.96.128:443
  363. Thu, 18 May 2023 09:27:55 GMT [86.832913] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  364. Thu, 18 May 2023 09:27:55 GMT [87.005718] udp_proxy [INFO] new udp session created from chrome.exe to 142.250.217.78:443
  365. Thu, 18 May 2023 09:27:55 GMT [87.128701] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  366. Thu, 18 May 2023 09:27:56 GMT [87.295857] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.22.137:443
  367. Thu, 18 May 2023 09:27:56 GMT [87.311373] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.22.137:443
  368. Thu, 18 May 2023 09:27:56 GMT [87.366550] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  369. Thu, 18 May 2023 09:27:56 GMT [87.525886] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 52.71.162.250:443
  370. Thu, 18 May 2023 09:27:56 GMT [87.899435] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 597 n_sent 7263) (backend n_received 7263 n_sent 609)
  371. Thu, 18 May 2023 09:27:56 GMT [87.899435] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 597 n_sent 7263) (backend n_received 7263 n_sent 609)
  372. Thu, 18 May 2023 09:27:56 GMT [87.899935] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 517 n_sent 6594) (backend n_received 6594 n_sent 529)
  373. Thu, 18 May 2023 09:27:56 GMT [87.971995] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  374. Thu, 18 May 2023 09:27:56 GMT [88.084074] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  375. Thu, 18 May 2023 09:27:56 GMT [88.252243] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  376. Thu, 18 May 2023 09:27:57 GMT [88.396291] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  377. Thu, 18 May 2023 09:27:57 GMT [88.564974] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.196.220.69:443
  378. Thu, 18 May 2023 09:27:57 GMT [88.580219] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 52.216.109.195:443
  379. Thu, 18 May 2023 09:27:57 GMT [88.703993] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 151.101.22.137:443 (client n_received 517 n_sent 5055) (backend n_received 5079 n_sent 529)
  380. Thu, 18 May 2023 09:27:57 GMT [88.732991] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  381. Thu, 18 May 2023 09:27:57 GMT [88.892993] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  382. Thu, 18 May 2023 09:27:57 GMT [89.103014] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  383. Thu, 18 May 2023 09:27:57 GMT [89.109015] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  384. Thu, 18 May 2023 09:27:58 GMT [89.383710] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  385. Thu, 18 May 2023 09:27:58 GMT [89.570098] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.194.64.149:8095
  386. Thu, 18 May 2023 09:27:58 GMT [89.625609] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  387. Thu, 18 May 2023 09:27:58 GMT [89.740608] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  388. Thu, 18 May 2023 09:27:58 GMT [89.849047] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.23.9:443
  389. Thu, 18 May 2023 09:27:58 GMT [89.864554] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.23.9:443
  390. Thu, 18 May 2023 09:27:58 GMT [89.926666] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  391. Thu, 18 May 2023 09:27:58 GMT [90.139066] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  392. Thu, 18 May 2023 09:27:58 GMT [90.208065] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  393. Thu, 18 May 2023 09:27:59 GMT [90.360065] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 159.153.191.238:443
  394. Thu, 18 May 2023 09:27:59 GMT [90.526563] tcp_proxy [INFO] new tcp session created from ealocalhostsvc.exe to 184.86.196.184:443
  395. Thu, 18 May 2023 09:27:59 GMT [90.573065] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  396. Thu, 18 May 2023 09:27:59 GMT [90.763063] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 1861 n_sent 4959) (backend n_received 4959 n_sent 1873)
  397. Thu, 18 May 2023 09:27:59 GMT [90.849065] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  398. Thu, 18 May 2023 09:27:59 GMT [90.886566] tcp_proxy [INFO] new tcp session created from easteamproxy.exe to 184.86.196.184:443
  399. Thu, 18 May 2023 09:27:59 GMT [90.889065] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  400. Thu, 18 May 2023 09:27:59 GMT [90.902568] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  401. Thu, 18 May 2023 09:27:59 GMT [90.933565] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  402. Thu, 18 May 2023 09:27:59 GMT [90.964563] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  403. Thu, 18 May 2023 09:27:59 GMT [91.057565] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 159.153.190.212:443
  404. Thu, 18 May 2023 09:27:59 GMT [91.079564] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.212.163.116:443
  405. Thu, 18 May 2023 09:27:59 GMT [91.104065] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.212.163.116:443
  406. Thu, 18 May 2023 09:27:59 GMT [91.119564] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  407. Thu, 18 May 2023 09:27:59 GMT [91.236565] udp_proxy [INFO] new udp session created from chrome.exe to 104.16.181.45:443
  408. Thu, 18 May 2023 09:27:59 GMT [91.243563] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 151.101.23.9:443 (client n_received 517 n_sent 5008) (backend n_received 5032 n_sent 529)
  409. Thu, 18 May 2023 09:28:00 GMT [91.341604] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  410. Thu, 18 May 2023 09:28:00 GMT [91.613945] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  411. Thu, 18 May 2023 09:28:00 GMT [91.646444] tcp_proxy [INFO] new tcp session created from bf2042_launcher.exe to 18.65.229.24:443
  412. Thu, 18 May 2023 09:28:00 GMT [91.801444] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 52.84.160.123:80
  413. Thu, 18 May 2023 09:28:00 GMT [91.822944] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  414. Thu, 18 May 2023 09:28:00 GMT [91.894451] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 4607 n_sent 591) (backend n_received 591 n_sent 4619)
  415. Thu, 18 May 2023 09:28:00 GMT [91.894944] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.194.64.149:8095 (client n_received 1462 n_sent 5056) (backend n_received 5056 n_sent 1474)
  416. Thu, 18 May 2023 09:28:00 GMT [92.184945] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  417. Thu, 18 May 2023 09:28:01 GMT [92.405444] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 99.86.39.89:80
  418. Thu, 18 May 2023 09:28:01 GMT [92.439445] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.194.64.149:8095
  419. Thu, 18 May 2023 09:28:01 GMT [92.672447] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  420. Thu, 18 May 2023 09:28:01 GMT [92.854943] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.195.105.209:443
  421. Thu, 18 May 2023 09:28:01 GMT [92.856443] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.195.105.209:443
  422. Thu, 18 May 2023 09:28:01 GMT [92.866445] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.195.105.209:443
  423. Thu, 18 May 2023 09:28:01 GMT [92.885944] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.195.105.209:443
  424. Thu, 18 May 2023 09:28:01 GMT [92.901444] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.195.105.209:443
  425. Thu, 18 May 2023 09:28:01 GMT [92.932444] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  426. Thu, 18 May 2023 09:28:02 GMT [93.428446] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.194.64.149:8095
  427. Thu, 18 May 2023 09:28:02 GMT [94.265445] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.195.105.209:443 (client n_received 643 n_sent 3915) (backend n_received 3915 n_sent 655)
  428. Thu, 18 May 2023 09:28:02 GMT [94.265944] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.195.105.209:443 (client n_received 517 n_sent 3580) (backend n_received 3580 n_sent 529)
  429. Thu, 18 May 2023 09:28:02 GMT [94.265944] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.195.105.209:443 (client n_received 517 n_sent 3580) (backend n_received 3580 n_sent 529)
  430. Thu, 18 May 2023 09:28:02 GMT [94.266446] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.195.105.209:443 (client n_received 517 n_sent 3579) (backend n_received 3579 n_sent 529)
  431. Thu, 18 May 2023 09:28:02 GMT [94.286945] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  432. Thu, 18 May 2023 09:28:03 GMT [94.748446] udp_proxy [INFO] new udp session created from chrome.exe to 104.16.180.45:443
  433. Thu, 18 May 2023 09:28:05 GMT [96.419610] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  434. Thu, 18 May 2023 09:28:05 GMT [96.605109] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.18.6.185:443
  435. Thu, 18 May 2023 09:28:06 GMT [97.999613] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 52.216.109.195:443 (client n_received 1054 n_sent 7246) (backend n_received 7246 n_sent 1066)
  436. Thu, 18 May 2023 09:28:08 GMT [99.650495] tcp_proxy [INFO] new tcp session created from chrome.exe to 104.18.6.185:443
  437. Thu, 18 May 2023 09:28:09 GMT [100.498826] udp_proxy [INFO] new udp session created from chrome.exe to 104.18.6.185:443
  438. Thu, 18 May 2023 09:28:10 GMT [101.624327] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  439. Thu, 18 May 2023 09:28:10 GMT [101.780831] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  440. Thu, 18 May 2023 09:28:10 GMT [101.809827] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  441. Thu, 18 May 2023 09:28:10 GMT [101.825327] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  442. Thu, 18 May 2023 09:28:11 GMT [102.491827] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 7986 n_sent 2109) (backend n_received 2109 n_sent 7998)
  443. Thu, 18 May 2023 09:28:11 GMT [102.615827] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 581 n_sent 4216) (backend n_received 4216 n_sent 593)
  444. Thu, 18 May 2023 09:28:12 GMT [103.778827] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  445. Thu, 18 May 2023 09:28:12 GMT [103.779327] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 3421 n_sent 3643) (backend n_received 3643 n_sent 3433)
  446. Thu, 18 May 2023 09:28:12 GMT [103.871327] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  447. Thu, 18 May 2023 09:28:12 GMT [103.871828] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 3077 n_sent 3933) (backend n_received 3933 n_sent 3089)
  448. Thu, 18 May 2023 09:28:12 GMT [103.917826] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  449. Thu, 18 May 2023 09:28:12 GMT [103.918327] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 5149 n_sent 3402) (backend n_received 3402 n_sent 5161)
  450. Thu, 18 May 2023 09:28:13 GMT [104.413828] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  451. Thu, 18 May 2023 09:28:13 GMT [104.414327] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 4124 n_sent 3218) (backend n_received 3218 n_sent 4136)
  452. Thu, 18 May 2023 09:28:13 GMT [104.537826] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  453. Thu, 18 May 2023 09:28:13 GMT [104.537826] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 3277 n_sent 4096) (backend n_received 4096 n_sent 3289)
  454. Thu, 18 May 2023 09:28:14 GMT [105.408328] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  455. Thu, 18 May 2023 09:28:14 GMT [105.731331] tcp_proxy [INFO] new tcp session created from bf2042_launcher.exe to 34.246.58.50:443
  456. Thu, 18 May 2023 09:28:15 GMT [106.413326] tcp_proxy [INFO] tcpp_sess done: procname bf2042_launcher.exe dst 18.65.229.24:443 (client n_received 644 n_sent 6023) (backend n_received 6023 n_sent 656)
  457. Thu, 18 May 2023 09:28:15 GMT [107.106826] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  458. Thu, 18 May 2023 09:28:16 GMT [107.296826] tcp_proxy [INFO] new tcp session created from bf2042_launcher.exe to 52.19.18.136:443
  459. Thu, 18 May 2023 09:28:16 GMT [107.637827] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 54.85.118.96:443 (client n_received 4567 n_sent 737) (backend n_received 737 n_sent 4579)
  460. Thu, 18 May 2023 09:28:16 GMT [108.071827] tcp_proxy [INFO] tcpp_sess done: procname bf2042_launcher.exe dst 34.246.58.50:443 (client n_received 773 n_sent 5861) (backend n_received 5861 n_sent 785)
  461. Thu, 18 May 2023 09:28:17 GMT [108.614326] tcp_proxy [INFO] tcpp_sess done: procname bf2042_launcher.exe dst 52.19.18.136:443 (client n_received 688 n_sent 5349) (backend n_received 5349 n_sent 700)
  462. Thu, 18 May 2023 09:28:17 GMT [109.112828] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  463. Thu, 18 May 2023 09:28:18 GMT [109.358329] tcp_proxy [INFO] new tcp session created from bf2042.exe to 159.153.190.222:443
  464. Thu, 18 May 2023 09:28:21 GMT [113.248827] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 1133 n_sent 2168) (backend n_received 2168 n_sent 1145)
  465. Thu, 18 May 2023 09:28:21 GMT [113.279829] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  466. Thu, 18 May 2023 09:28:22 GMT [113.683830] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  467. Thu, 18 May 2023 09:28:22 GMT [113.713827] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 700 n_sent 2812) (backend n_received 2812 n_sent 712)
  468. Thu, 18 May 2023 09:28:22 GMT [113.853327] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  469. Thu, 18 May 2023 09:28:22 GMT [114.023827] mudwfp_proxy [INFO] vsl| FLOW 2267 MUDWFP_filter_reset - reset
  470. Thu, 18 May 2023 09:28:22 GMT [114.023827] mudwfp_proxy [INFO] Reset 1 backend rules
  471. Thu, 18 May 2023 09:28:22 GMT [114.023827] mudwfp_proxy [INFO] vsl| FLOW 2268 MUDWFP_filter_add - *|B|10.233.144.1
  472. Thu, 18 May 2023 09:28:22 GMT [114.024327] mudwfp_proxy [INFO] Backend 10.233.144.1 added for process *
  473. Thu, 18 May 2023 09:28:22 GMT [114.024327] mudwfp_proxy [INFO] vsl| FLOW 2269 MUDWFP_bypass_reset - reset
  474. Thu, 18 May 2023 09:28:22 GMT [114.024827] mudwfp_proxy [INFO] Reset 15 exclude rules
  475. Thu, 18 May 2023 09:28:22 GMT [114.024827] mudwfp_proxy [INFO] vsl| FLOW 2270 MUDWFP_bypass_proc_add - mudfish.exe
  476. Thu, 18 May 2023 09:28:22 GMT [114.025327] mudwfp_proxy [INFO] exclude the process mudfish.exe
  477. Thu, 18 May 2023 09:28:22 GMT [114.025327] mudwfp_proxy [INFO] vsl| FLOW 2271 MUDWFP_bypass_proc_add - mudflow.exe
  478. Thu, 18 May 2023 09:28:22 GMT [114.025327] mudwfp_proxy [INFO] exclude the process mudflow.exe
  479. Thu, 18 May 2023 09:28:22 GMT [114.025826] mudwfp_proxy [INFO] vsl| FLOW 2272 MUDWFP_bypass_proc_add - mudrun.exe
  480. Thu, 18 May 2023 09:28:22 GMT [114.025826] mudwfp_proxy [INFO] exclude the process mudrun.exe
  481. Thu, 18 May 2023 09:28:22 GMT [114.026326] mudwfp_proxy [INFO] vsl| FLOW 2273 MUDWFP_bypass_addr_add - 14.63.213.39/32
  482. Thu, 18 May 2023 09:28:22 GMT [114.026326] mudwfp_proxy [INFO] Exclude the iprange 0x27d53f0e/32
  483. Thu, 18 May 2023 09:28:22 GMT [114.026826] mudwfp_proxy [INFO] vsl| FLOW 2274 MUDWFP_bypass_addr_add - 14.63.214.203/32
  484. Thu, 18 May 2023 09:28:22 GMT [114.026826] mudwfp_proxy [INFO] Exclude the iprange 0xcbd63f0e/32
  485. Thu, 18 May 2023 09:28:22 GMT [114.026826] mudwfp_proxy [INFO] vsl| FLOW 2275 MUDWFP_bypass_addr_add - 14.63.214.216/32
  486. Thu, 18 May 2023 09:28:22 GMT [114.027326] mudwfp_proxy [INFO] Exclude the iprange 0xd8d63f0e/32
  487. Thu, 18 May 2023 09:28:22 GMT [114.027326] mudwfp_proxy [INFO] vsl| FLOW 2276 MUDWFP_bypass_addr_add - 14.63.218.94/32
  488. Thu, 18 May 2023 09:28:22 GMT [114.027826] mudwfp_proxy [INFO] Exclude the iprange 0x5eda3f0e/32
  489. Thu, 18 May 2023 09:28:22 GMT [114.027826] mudwfp_proxy [INFO] vsl| FLOW 2277 MUDWFP_bypass_addr_add - 14.63.223.194/32
  490. Thu, 18 May 2023 09:28:22 GMT [114.028326] mudwfp_proxy [INFO] Exclude the iprange 0xc2df3f0e/32
  491. Thu, 18 May 2023 09:28:22 GMT [114.028326] mudwfp_proxy [INFO] vsl| FLOW 2278 MUDWFP_bypass_addr_add - 14.63.223.218/32
  492. Thu, 18 May 2023 09:28:22 GMT [114.028326] mudwfp_proxy [INFO] Exclude the iprange 0xdadf3f0e/32
  493. Thu, 18 May 2023 09:28:22 GMT [114.028826] mudwfp_proxy [INFO] vsl| FLOW 2279 MUDWFP_bypass_addr_add - 10.0.0.0/8
  494. Thu, 18 May 2023 09:28:22 GMT [114.028826] mudwfp_proxy [INFO] Exclude the iprange 0xa/8
  495. Thu, 18 May 2023 09:28:22 GMT [114.029327] mudwfp_proxy [INFO] vsl| FLOW 2280 MUDWFP_bypass_addr_add - 172.16.0.0/12
  496. Thu, 18 May 2023 09:28:22 GMT [114.029327] mudwfp_proxy [INFO] Exclude the iprange 0x10ac/12
  497. Thu, 18 May 2023 09:28:22 GMT [114.029827] mudwfp_proxy [INFO] vsl| FLOW 2281 MUDWFP_bypass_addr_add - 192.168.0.0/16
  498. Thu, 18 May 2023 09:28:22 GMT [114.029827] mudwfp_proxy [INFO] Exclude the iprange 0xa8c0/16
  499. Thu, 18 May 2023 09:28:22 GMT [114.029827] mudwfp_proxy [INFO] vsl| FLOW 2282 MUDWFP_bypass_addr_add - 224.0.0.0/3
  500. Thu, 18 May 2023 09:28:22 GMT [114.030326] mudwfp_proxy [INFO] Exclude the iprange 0xe0/3
  501. Thu, 18 May 2023 09:28:22 GMT [114.030326] mudwfp_proxy [INFO] vsl| FLOW 2283 MUDWFP_bypass_addr_add - 192.168.0.1/32
  502. Thu, 18 May 2023 09:28:22 GMT [114.030826] mudwfp_proxy [INFO] Exclude the iprange 0x100a8c0/32
  503. Thu, 18 May 2023 09:28:22 GMT [114.030826] mudwfp_proxy [INFO] vsl| FLOW 2284 MUDWFP_bypass_proc_add - chrome.exe
  504. Thu, 18 May 2023 09:28:22 GMT [114.030826] mudwfp_proxy [INFO] exclude the process chrome.exe
  505. Thu, 18 May 2023 09:28:22 GMT [114.031326] mudwfp_proxy [INFO] Pushed the filter changes (count 1 filter_all 1) into the MUDWFP driver.
  506. Thu, 18 May 2023 09:28:22 GMT [114.031326] mudwfp_proxy [INFO] Pushed the bypass process changes (count 4) into the MUDWFP driver.
  507. Thu, 18 May 2023 09:28:22 GMT [114.031826] mudwfp_proxy [INFO] Pushed the bypass iprange changes (count 11) into the MUDWFP driver.
  508. Thu, 18 May 2023 09:28:22 GMT [114.054828] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 3.39.186.83:443 (client n_received 2219 n_sent 7546) (backend n_received 7546 n_sent 2231)
  509. Thu, 18 May 2023 09:28:22 GMT [114.055827] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 350 n_sent 1406) (backend n_received 1406 n_sent 362)
  510. Thu, 18 May 2023 09:28:22 GMT [114.056327] tcp_proxy [INFO] tcpp_sess done: procname bf2042.exe dst 159.153.190.222:443 (client n_received 889 n_sent 3655) (backend n_received 3655 n_sent 901)
  511. Thu, 18 May 2023 09:28:22 GMT [114.056828] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 700 n_sent 2812) (backend n_received 2812 n_sent 712)
  512. Thu, 18 May 2023 09:28:22 GMT [114.056828] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  513. Thu, 18 May 2023 09:28:22 GMT [114.057327] tcp_proxy [INFO] Thu, 18 May 2023 09:28:22 GMT [114.057828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  514. tcpp_sess done: procname chrome.exe dst 104.18.6.185:443 (client n_received 1508 n_sent 66749) (backend n_received 66749 n_sent 1520)
  515. Thu, 18 May 2023 09:28:22 GMT [114.058328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  516. Thu, 18 May 2023 09:28:22 GMT [114.058328] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.194.64.149:8095 (client n_received 1886 n_sent 5992) (backend n_received 5992 n_sent 1898)
  517. Thu, 18 May 2023 09:28:22 GMT [114.058328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 137 n_sent 0)
  518. Thu, 18 May 2023 09:28:22 GMT [114.058828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.194.64.149:8095 (client n_received 1888 n_sent 6156) (backend n_received 6156 n_sent 1900)
  519. Thu, 18 May 2023 09:28:22 GMT [114.058828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  520. Thu, 18 May 2023 09:28:22 GMT [114.059328] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 4865 n_sent 591) (backend n_received 591 n_sent 4877)
  521. Thu, 18 May 2023 09:28:22 GMT [114.059828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  522. Thu, 18 May 2023 09:28:22 GMT [114.059828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.212.163.116:443 (client n_received 1902 n_sent 6015) (backend n_received 6015 n_sent 1914)
  523. Thu, 18 May 2023 09:28:22 GMT [114.060329] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 104.18.6.185:443 (kernel n_received 37502 n_sent 0)
  524. Thu, 18 May 2023 09:28:22 GMT [114.060829] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 159.153.190.212:443 (client n_received 2227 n_sent 6292) (backend n_received 6292 n_sent 2239)
  525. Thu, 18 May 2023 09:28:22 GMT [114.060829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 139 n_sent 0)
  526. Thu, 18 May 2023 09:28:22 GMT [114.061329] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 5978 n_sent 5316) (backend n_received 5316 n_sent 5990)
  527. Thu, 18 May 2023 09:28:22 GMT [114.061329] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 104.16.180.45:443 (kernel n_received 6266 n_sent 0)
  528. Thu, 18 May 2023 09:28:22 GMT [114.061828] tcp_proxy [INFO] tcpp_sess done: procname easteamproxy.exe dst 184.86.196.184:443 (client n_received 1559 n_sent 7457) (backend n_received 7457 n_sent 1571)
  529. Thu, 18 May 2023 09:28:22 GMT [114.062329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  530. Thu, 18 May 2023 09:28:22 GMT [114.062329] tcp_proxy [INFO] tcpp_sess done: procname ealocalhostsvc.exe dst 184.86.196.184:443 (client n_received 1450 n_sent 7457) (backend n_received 7457 n_sent 1462)
  531. Thu, 18 May 2023 09:28:22 GMT [114.062829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  532. Thu, 18 May 2023 09:28:22 GMT [114.063331] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 159.153.191.238:443 (client n_received 1264 n_sent 3732) (backend n_received 3732 n_sent 1276)
  533. Thu, 18 May 2023 09:28:22 GMT [114.063331] udp_proxy [INFO] Thu, 18 May 2023 09:28:22 GMT [114.063829] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 6252 n_sent 1237) (backend n_received 1237 n_sent 6264)
  534. udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  535. Thu, 18 May 2023 09:28:22 GMT [114.064329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 141 n_sent 0)
  536. Thu, 18 May 2023 09:28:22 GMT [114.064329] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 4807 n_sent 6964) (backend n_received 6964 n_sent 4819)
  537. Thu, 18 May 2023 09:28:22 GMT [114.064828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  538. Thu, 18 May 2023 09:28:22 GMT [114.064828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.196.220.69:443 (client n_received 2104 n_sent 5903) (backend n_received 5903 n_sent 2116)
  539. Thu, 18 May 2023 09:28:22 GMT [114.065328] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 104.16.181.45:443 (kernel n_received 75678 n_sent 0)
  540. Thu, 18 May 2023 09:28:22 GMT [114.065832] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 12065 n_sent 7074) (backend n_received 7074 n_sent 12077)
  541. Thu, 18 May 2023 09:28:22 GMT [114.065832] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  542. Thu, 18 May 2023 09:28:22 GMT [114.066828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  543. Thu, 18 May 2023 09:28:22 GMT [114.066329] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 52.71.162.250:443 (client n_received 6820 n_sent 7200) (backend n_received 7200 n_sent 6832)
  544. Thu, 18 May 2023 09:28:22 GMT [114.066828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  545. Thu, 18 May 2023 09:28:22 GMT [114.067828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 151.101.22.137:443 (client n_received 2157 n_sent 6536) (backend n_received 6536 n_sent 2169)
  546. Thu, 18 May 2023 09:28:22 GMT [114.067828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  547. Thu, 18 May 2023 09:28:22 GMT [114.068328] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 52.72.96.128:443 (client n_received 1071 n_sent 5394) (backend n_received 5394 n_sent 1083)
  548. Thu, 18 May 2023 09:28:22 GMT [114.068829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  549. Thu, 18 May 2023 09:28:22 GMT [114.068829] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 52.72.96.128:443 (client n_received 980 n_sent 9589) (backend n_received 9589 n_sent 992)
  550. Thu, 18 May 2023 09:28:22 GMT [114.069328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 126 n_sent 0)
  551. Thu, 18 May 2023 09:28:22 GMT [114.069828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 142.251.33.112:443 (client n_received 1228 n_sent 5243) (backend n_received 5243 n_sent 1240)
  552. Thu, 18 May 2023 09:28:22 GMT [114.069828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  553. Thu, 18 May 2023 09:28:22 GMT [114.070328] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 75166 n_sent 249312) (backend n_received 249312 n_sent 75178)
  554. Thu, 18 May 2023 09:28:22 GMT [114.070328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 156 n_sent 0)
  555. Thu, 18 May 2023 09:28:22 GMT [114.071328] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 3.232.147.57:443 (client n_received 1132 n_sent 4770) (backend n_received 4770 n_sent 1144)
  556. Thu, 18 May 2023 09:28:22 GMT [114.071828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 145 n_sent 0)
  557. Thu, 18 May 2023 09:28:22 GMT [114.071828] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 162.159.133.233:443 (client n_received 915 n_sent 9622) (backend n_received 9622 n_sent 927)
  558. Thu, 18 May 2023 09:28:22 GMT [114.072328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  559. Thu, 18 May 2023 09:28:22 GMT [114.072828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 142.251.215.232:443 (client n_received 1075 n_sent 55413) (backend n_received 55413 n_sent 1087)
  560. Thu, 18 May 2023 09:28:22 GMT [114.072828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 132 n_sent 0)
  561. Thu, 18 May 2023 09:28:22 GMT [114.073329] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 3.222.143.212:443 (client n_received 15832 n_sent 11442) (backend n_received 11442 n_sent 15844)
  562. Thu, 18 May 2023 09:28:22 GMT [114.073829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 135 n_sent 0)
  563. Thu, 18 May 2023 09:28:22 GMT [114.074329] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 34.225.170.169:443 (client n_received 1418 n_sent 5015) (backend n_received 5015 n_sent 1430)
  564. Thu, 18 May 2023 09:28:22 GMT [114.074329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 135 n_sent 0)
  565. Thu, 18 May 2023 09:28:22 GMT [114.074829] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.35.109.225:443 (client n_received 12129 n_sent 931751) (backend n_received 931751 n_sent 12141)
  566. Thu, 18 May 2023 09:28:22 GMT [114.074829] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.250.217.78:443 (kernel n_received 3225 n_sent 0)
  567. Thu, 18 May 2023 09:28:22 GMT [114.075328] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 23.54.48.157:443 (client n_received 5103 n_sent 12796) (backend n_received 12796 n_sent 5115)
  568. Thu, 18 May 2023 09:28:22 GMT [114.075828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  569. Thu, 18 May 2023 09:28:22 GMT [114.075828] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 159.153.191.240:443 (client n_received 2256 n_sent 4425) (backend n_received 4425 n_sent 2268)
  570. Thu, 18 May 2023 09:28:22 GMT [114.076329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 136 n_sent 0)
  571. Thu, 18 May 2023 09:28:22 GMT [114.076828] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 216.239.38.181:443 (client n_received 2619 n_sent 8409) (backend n_received 8409 n_sent 2631)
  572. Thu, 18 May 2023 09:28:22 GMT [114.076828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 151 n_sent 0)
  573. Thu, 18 May 2023 09:28:22 GMT [114.077329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 23.195.105.203:443 (client n_received 1245 n_sent 5014) (backend n_received 5014 n_sent 1257)
  574. Thu, 18 May 2023 09:28:22 GMT [114.077329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  575. Thu, 18 May 2023 09:28:22 GMT [114.077828] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 173.194.202.155:443 (client n_received 1570 n_sent 6043) (backend n_received 6043 n_sent 1582)
  576. Thu, 18 May 2023 09:28:22 GMT [114.077828] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.251.215.228:443 (kernel n_received 4330 n_sent 0)
  577. Thu, 18 May 2023 09:28:22 GMT [114.078329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 216.239.38.181:443 (client n_received 2884 n_sent 8411) (backend n_received 8411 n_sent 2896)
  578. Thu, 18 May 2023 09:28:22 GMT [114.078329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  579. Thu, 18 May 2023 09:28:22 GMT [114.078829] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.33.110:443 (client n_received 1959 n_sent 6289) (backend n_received 6289 n_sent 1971)
  580. Thu, 18 May 2023 09:28:22 GMT [114.078829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  581. Thu, 18 May 2023 09:28:22 GMT [114.079328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  582. Thu, 18 May 2023 09:28:22 GMT [114.079328] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 104.17.25.14:443 (client n_received 1140 n_sent 3887) (backend n_received 3887 n_sent 1152)
  583. Thu, 18 May 2023 09:28:22 GMT [114.079828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  584. Thu, 18 May 2023 09:28:22 GMT [114.080329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 4475 n_sent 1360548) (backend n_received 1360548 n_sent 4487)
  585. Thu, 18 May 2023 09:28:22 GMT [114.080329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 122 n_sent 0)
  586. Thu, 18 May 2023 09:28:22 GMT [114.080829] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 5323 n_sent 1455308) (backend n_received 1455308 n_sent 5335)
  587. Thu, 18 May 2023 09:28:22 GMT [114.081329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  588. Thu, 18 May 2023 09:28:22 GMT [114.081329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 7349 n_sent 232981) (backend n_received 232981 n_sent 7361)
  589. Thu, 18 May 2023 09:28:22 GMT [114.081829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 135 n_sent 0)
  590. Thu, 18 May 2023 09:28:22 GMT [114.082329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 5640 n_sent 313414) (backend n_received 313414 n_sent 5652)
  591. Thu, 18 May 2023 09:28:22 GMT [114.082329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 123 n_sent 0)
  592. Thu, 18 May 2023 09:28:22 GMT [114.082829] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.215.232:443 (client n_received 1286 n_sent 141441) (backend n_received 141441 n_sent 1298)
  593. Thu, 18 May 2023 09:28:22 GMT [114.082829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  594. Thu, 18 May 2023 09:28:22 GMT [114.083328] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.33.74:443 (client n_received 1256 n_sent 6282) (backend n_received 6282 n_sent 1268)
  595. Thu, 18 May 2023 09:28:22 GMT [114.083827] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  596. Thu, 18 May 2023 09:28:22 GMT [114.084329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 52.84.162.5:443 (client n_received 1213 n_sent 6147) (backend n_received 6147 n_sent 1225)
  597. Thu, 18 May 2023 09:28:22 GMT [114.084329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 141 n_sent 0)
  598. Thu, 18 May 2023 09:28:22 GMT [114.084829] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 172.217.14.226:443 (client n_received 1502 n_sent 32122) (backend n_received 32122 n_sent 1514)
  599. Thu, 18 May 2023 09:28:22 GMT [114.084829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 156 n_sent 0)
  600. Thu, 18 May 2023 09:28:22 GMT [114.085829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 127 n_sent 0)
  601. Thu, 18 May 2023 09:28:22 GMT [114.085328] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.215.232:443 (client n_received 1501 n_sent 303237) (backend n_received 303237 n_sent 1513)
  602. Thu, 18 May 2023 09:28:22 GMT [114.085829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  603. Thu, 18 May 2023 09:28:22 GMT [114.086329] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 6957 n_sent 1418734) (backend n_received 1418734 n_sent 6969)
  604. Thu, 18 May 2023 09:28:22 GMT [114.086329] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.250.217.98:443 (kernel n_received 5394 n_sent 0)
  605. Thu, 18 May 2023 09:28:22 GMT [114.086829] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 52.84.162.5:443 (client n_received 2128 n_sent 7657) (backend n_received 7657 n_sent 2140)
  606. Thu, 18 May 2023 09:28:22 GMT [114.086829] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 216.239.38.181:443 (kernel n_received 7733 n_sent 0)
  607. Thu, 18 May 2023 09:28:22 GMT [114.087328] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 184.86.196.184:443 (client n_received 1318 n_sent 8161) (backend n_received 8161 n_sent 1330)
  608. Thu, 18 May 2023 09:28:22 GMT [114.087328] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 31.13.66.174:443 (kernel n_received 2734 n_sent 0)
  609. Thu, 18 May 2023 09:28:22 GMT [114.088329] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 23.64.202.8:443 (client n_received 5525 n_sent 9792) (backend n_received 9792 n_sent 5537)
  610. Thu, 18 May 2023 09:28:22 GMT [114.088329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  611. Thu, 18 May 2023 09:28:22 GMT [114.088828] tcp_proxy [INFO] Reset all TCP sessions (count 182)
  612. Thu, 18 May 2023 09:28:22 GMT [114.088828] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.251.33.110:443 (kernel n_received 6109 n_sent 0)
  613. Thu, 18 May 2023 09:28:22 GMT [114.089329] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  614. Thu, 18 May 2023 09:28:22 GMT [114.089828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  615. Thu, 18 May 2023 09:28:22 GMT [114.090329] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 216.239.38.181:443 (kernel n_received 6004 n_sent 0)
  616. Thu, 18 May 2023 09:28:22 GMT [114.090329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  617. Thu, 18 May 2023 09:28:22 GMT [114.090827] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.251.33.110:443 (kernel n_received 4133 n_sent 0)
  618. Thu, 18 May 2023 09:28:22 GMT [114.091328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  619. Thu, 18 May 2023 09:28:22 GMT [114.091828] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.250.69.206:443 (kernel n_received 3996 n_sent 0)
  620. Thu, 18 May 2023 09:28:22 GMT [114.092327] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  621. Thu, 18 May 2023 09:28:22 GMT [114.092327] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.251.215.232:443 (kernel n_received 8229 n_sent 0)
  622. Thu, 18 May 2023 09:28:22 GMT [114.092828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  623. Thu, 18 May 2023 09:28:22 GMT [114.092828] udp_proxy [INFO] udpp_sess done: procname chrome.exe dst 142.251.215.232:443 (kernel n_received 3994 n_sent 0)
  624. Thu, 18 May 2023 09:28:22 GMT [114.093328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  625. Thu, 18 May 2023 09:28:22 GMT [114.093328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 137 n_sent 0)
  626. Thu, 18 May 2023 09:28:22 GMT [114.093828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  627. Thu, 18 May 2023 09:28:22 GMT [114.094327] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  628. Thu, 18 May 2023 09:28:22 GMT [114.094327] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  629. Thu, 18 May 2023 09:28:22 GMT [114.094827] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  630. Thu, 18 May 2023 09:28:22 GMT [114.095328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  631. Thu, 18 May 2023 09:28:22 GMT [114.095328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 134 n_sent 0)
  632. Thu, 18 May 2023 09:28:22 GMT [114.095829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 142 n_sent 0)
  633. Thu, 18 May 2023 09:28:22 GMT [114.096328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 145 n_sent 0)
  634. Thu, 18 May 2023 09:28:22 GMT [114.096328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 144 n_sent 0)
  635. Thu, 18 May 2023 09:28:22 GMT [114.096828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 138 n_sent 0)
  636. Thu, 18 May 2023 09:28:22 GMT [114.096828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 136 n_sent 0)
  637. Thu, 18 May 2023 09:28:22 GMT [114.097328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  638. Thu, 18 May 2023 09:28:22 GMT [114.097328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 123 n_sent 0)
  639. Thu, 18 May 2023 09:28:22 GMT [114.097828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 129 n_sent 0)
  640. Thu, 18 May 2023 09:28:22 GMT [114.097828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 120 n_sent 0)
  641. Thu, 18 May 2023 09:28:22 GMT [114.098328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 135 n_sent 0)
  642. Thu, 18 May 2023 09:28:22 GMT [114.098328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 141 n_sent 0)
  643. Thu, 18 May 2023 09:28:22 GMT [114.098328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  644. Thu, 18 May 2023 09:28:22 GMT [114.098828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 151 n_sent 0)
  645. Thu, 18 May 2023 09:28:22 GMT [114.098828] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 130 n_sent 0)
  646. Thu, 18 May 2023 09:28:22 GMT [114.099329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 140 n_sent 0)
  647. Thu, 18 May 2023 09:28:22 GMT [114.099329] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 131 n_sent 0)
  648. Thu, 18 May 2023 09:28:22 GMT [114.099829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 142 n_sent 0)
  649. Thu, 18 May 2023 09:28:22 GMT [114.100328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 142 n_sent 0)
  650. Thu, 18 May 2023 09:28:22 GMT [114.100328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 128 n_sent 0)
  651. Thu, 18 May 2023 09:28:22 GMT [114.100829] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 142 n_sent 0)
  652. Thu, 18 May 2023 09:28:22 GMT [114.101328] udp_proxy [INFO] udpp_sess done: procname svchost.exe dst 168.126.63.1:53 (kernel n_received 139 n_sent 0)
  653. Thu, 18 May 2023 09:28:22 GMT [114.101328] udp_proxy [INFO] Reset all UDP sessions (count 91)
  654. Thu, 18 May 2023 09:28:22 GMT [114.205827] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  655. Thu, 18 May 2023 09:28:22 GMT [114.214829] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  656. Thu, 18 May 2023 09:28:22 GMT [114.215330] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  657. Thu, 18 May 2023 09:28:23 GMT [114.649830] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 584 n_sent 467) (backend n_received 467 n_sent 596)
  658. Thu, 18 May 2023 09:28:23 GMT [114.649830] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 581 n_sent 4216) (backend n_received 4216 n_sent 593)
  659. Thu, 18 May 2023 09:28:23 GMT [114.650327] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 581 n_sent 4216) (backend n_received 4216 n_sent 593)
  660. Thu, 18 May 2023 09:28:23 GMT [114.817341] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 159.153.191.238:443
  661. Thu, 18 May 2023 09:28:23 GMT [114.823838] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 23.64.202.8:443
  662. Thu, 18 May 2023 09:28:23 GMT [114.912355] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  663. Thu, 18 May 2023 09:28:23 GMT [115.069856] tcp_proxy [INFO] tcpp_sess done: procname svchost.exe dst 40.83.240.146:443 (client n_received 2007 n_sent 4957) (backend n_received 4957 n_sent 2019)
  664. Thu, 18 May 2023 09:28:23 GMT [115.069856] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 23.64.202.8:443 (client n_received 911 n_sent 6948) (backend n_received 6948 n_sent 923)
  665. Thu, 18 May 2023 09:28:23 GMT [115.070359] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 184.86.196.184:443 (client n_received 2606 n_sent 8759) (backend n_received 8759 n_sent 2618)
  666. Thu, 18 May 2023 09:28:23 GMT [115.070359] tcp_proxy [INFO] tcpp_sess done: procname eabackgroundservice.exe dst 184.86.196.184:443 (client n_received 1397 n_sent 7563) (backend n_received 7563 n_sent 1409)
  667. Thu, 18 May 2023 09:28:23 GMT [115.070860] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 104.18.68.5:443 (client n_received 2556 n_sent 22507) (backend n_received 22507 n_sent 2568)
  668. Thu, 18 May 2023 09:28:23 GMT [115.071357] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 104.18.68.5:443 (client n_received 581 n_sent 2628) (backend n_received 2628 n_sent 593)
  669. Thu, 18 May 2023 09:28:23 GMT [115.071858] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.250.69.206:443 (client n_received 1297 n_sent 102154) (backend n_received 102154 n_sent 1309)
  670. Thu, 18 May 2023 09:28:23 GMT [115.071858] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 52.84.160.180:443 (client n_received 1158 n_sent 16983) (backend n_received 16983 n_sent 1170)
  671. Thu, 18 May 2023 09:28:23 GMT [115.072357] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 210.114.17.111:443 (client n_received 4346 n_sent 1629922) (backend n_received 1629922 n_sent 4358)
  672. Thu, 18 May 2023 09:28:23 GMT [115.072357] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 69.16.175.42:443 (client n_received 1272 n_sent 218797) (backend n_received 218797 n_sent 1284)
  673. Thu, 18 May 2023 09:28:23 GMT [115.072857] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 13.33.185.202:443 (client n_received 1863 n_sent 217752) (backend n_received 217752 n_sent 1875)
  674. Thu, 18 May 2023 09:28:23 GMT [115.072857] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.33.74:443 (client n_received 1256 n_sent 6314) (backend n_received 6314 n_sent 1268)
  675. Thu, 18 May 2023 09:28:23 GMT [115.073357] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.251.33.110:443 (client n_received 1738 n_sent 27559) (backend n_received 27559 n_sent 1750)
  676. Thu, 18 May 2023 09:28:23 GMT [115.073857] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 142.250.217.98:443 (client n_received 1796 n_sent 8820) (backend n_received 8820 n_sent 1808)
  677. Thu, 18 May 2023 09:28:23 GMT [115.073857] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 173.194.202.155:443 (client n_received 1565 n_sent 6043) (backend n_received 6043 n_sent 1577)
  678. Thu, 18 May 2023 09:28:23 GMT [115.074356] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 184.86.196.184:443 (client n_received 8257 n_sent 12315) (backend n_received 12315 n_sent 8269)
  679. Thu, 18 May 2023 09:28:23 GMT [115.074356] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 23.64.202.8:443 (client n_received 48979 n_sent 23857) (backend n_received 23857 n_sent 48991)
  680. Thu, 18 May 2023 09:28:23 GMT [115.074857] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 159.153.191.240:443 (client n_received 1477 n_sent 4408) (backend n_received 4408 n_sent 1489)
  681. Thu, 18 May 2023 09:28:23 GMT [115.074857] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 184.86.196.184:443 (client n_received 4247 n_sent 25877) (backend n_received 25877 n_sent 4259)
  682. Thu, 18 May 2023 09:28:23 GMT [115.075357] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 184.86.196.184:443 (client n_received 2129 n_sent 7731) (backend n_received 7731 n_sent 2141)
  683. Thu, 18 May 2023 09:28:23 GMT [115.075856] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 34.225.170.169:443 (client n_received 2738 n_sent 5015) (backend n_received 5015 n_sent 2750)
  684. Thu, 18 May 2023 09:28:23 GMT [115.075856] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 52.84.162.98:443 (client n_received 1344 n_sent 639915) (backend n_received 639915 n_sent 1356)
  685. Thu, 18 May 2023 09:28:23 GMT [115.076357] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 104.18.27.208:443 (client n_received 581 n_sent 4413) (backend n_received 4413 n_sent 593)
  686. Thu, 18 May 2023 09:28:23 GMT [115.076357] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 3.232.147.57:443 (client n_received 1140 n_sent 4770) (backend n_received 4770 n_sent 1152)
  687. Thu, 18 May 2023 09:28:23 GMT [115.076856] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.202.207.69:443 (client n_received 3543 n_sent 5082) (backend n_received 5082 n_sent 3555)
  688. Thu, 18 May 2023 09:28:23 GMT [115.077357] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 52.72.96.128:443 (client n_received 1023 n_sent 5514) (backend n_received 5514 n_sent 1035)
  689. Thu, 18 May 2023 09:28:23 GMT [115.077357] tcp_proxy [INFO] tcpp_sess done: procname eadesktop.exe dst 52.72.96.128:443 (client n_received 1024 n_sent 5513) (backend n_received 5513 n_sent 1036)
  690. Thu, 18 May 2023 09:28:23 GMT [115.077856] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 5000 n_sent 6964) (backend n_received 6964 n_sent 5012)
  691. Thu, 18 May 2023 09:28:23 GMT [115.077856] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 151.101.23.9:443 (client n_received 1776 n_sent 20031) (backend n_received 20031 n_sent 1788)
  692. Thu, 18 May 2023 09:28:23 GMT [115.078356] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 30157 n_sent 7903) (backend n_received 7903 n_sent 30169)
  693. Thu, 18 May 2023 09:28:23 GMT [115.078356] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.212.163.116:443 (client n_received 2777 n_sent 6015) (backend n_received 6015 n_sent 2789)
  694. Thu, 18 May 2023 09:28:23 GMT [115.078856] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 52.84.160.123:80 (client n_received 250 n_sent 2160) (backend n_received 2160 n_sent 262)
  695. Thu, 18 May 2023 09:28:23 GMT [115.078856] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 99.86.39.89:80 (client n_received 247 n_sent 967) (backend n_received 967 n_sent 259)
  696. Thu, 18 May 2023 09:28:23 GMT [115.079357] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.195.105.209:443 (client n_received 1623 n_sent 122666) (backend n_received 122666 n_sent 1635)
  697. Thu, 18 May 2023 09:28:23 GMT [115.079357] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 3772 n_sent 591) (backend n_received 591 n_sent 3784)
  698. Thu, 18 May 2023 09:28:23 GMT [115.079857] tcp_proxy [INFO] tcpp_sess done: procname chrome.exe dst 104.18.6.185:443 (client n_received 1150 n_sent 8341) (backend n_received 8341 n_sent 1162)
  699. Thu, 18 May 2023 09:28:23 GMT [115.080356] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 4976 n_sent 3215) (backend n_received 3215 n_sent 4988)
  700. Thu, 18 May 2023 09:28:23 GMT [115.080356] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 1129 n_sent 1163) (backend n_received 1163 n_sent 1141)
  701. Thu, 18 May 2023 09:28:23 GMT [115.080356] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 1109 n_sent 2168) (backend n_received 2168 n_sent 1121)
  702. Thu, 18 May 2023 09:28:23 GMT [115.080856] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 350 n_sent 0) (backend n_received 0 n_sent 362)
  703. Thu, 18 May 2023 09:28:24 GMT [115.438031] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  704. Thu, 18 May 2023 09:28:24 GMT [115.527533] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.198.41.220:443
  705. Thu, 18 May 2023 09:28:24 GMT [115.913032] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  706. Thu, 18 May 2023 09:28:24 GMT [116.081531] tcp_proxy [INFO] new tcp session created from discord.exe to 162.159.128.233:443
  707. Thu, 18 May 2023 09:28:24 GMT [116.180032] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 517 n_sent 147) (backend n_received 147 n_sent 529)
  708. Thu, 18 May 2023 09:28:25 GMT [116.891031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  709. Thu, 18 May 2023 09:28:26 GMT [118.013531] udp_proxy [INFO] new udp session created from discord.exe to 162.159.128.233:443
  710. Thu, 18 May 2023 09:28:26 GMT [118.051531] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  711. Thu, 18 May 2023 09:28:27 GMT [119.064031] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.35.109.225:443
  712. Thu, 18 May 2023 09:28:28 GMT [119.371532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.35.109.225:443
  713. Thu, 18 May 2023 09:28:28 GMT [119.656031] udp_proxy [INFO] new udp session created from chrome.exe to 104.16.181.45:443
  714. Thu, 18 May 2023 09:28:28 GMT [119.759531] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  715. Thu, 18 May 2023 09:28:28 GMT [119.809033] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.194.64.149:8095
  716. Thu, 18 May 2023 09:28:28 GMT [120.146040] mudwfp_proxy [INFO] n_buffer_list_too_big 0 n_buffer_list_contbuf 0 n_buffer_list_zero_length 0 n_buffer_list_copy_failed 0 n_nonpagepool_alloc 2160 n_nonpagepool_free 2058 n_nonpagepool_udp_classify_alloc 538 n_nonpagepool_udp_classify_free 538 n_nonpagepool_flow_context_alloc 1761 n_nonpagepool_flow_context_free 1753
  717. Thu, 18 May 2023 09:28:28 GMT [120.269531] tcp_proxy [INFO] tcp_proxy stat: n_eps 25 n_sess 15 n_c_connaborted 7 n_c_connreset 19 n_b_connaborted 3 n_b_connreset 0 n_hit_fdsetsize 2637
  718. Thu, 18 May 2023 09:28:29 GMT [120.363532] udp_proxy [INFO] udp_proxy stat: n_sess 4 n_invalid_magics 1 n_drop_broadcast 0
  719. Thu, 18 May 2023 09:28:29 GMT [120.364033] udp_proxy [INFO] udp_proxy stat: n_kernel_sent 474484 n_kernel_received 214139 n_user_sent 167871 n_user_received 414116
  720. Thu, 18 May 2023 09:28:29 GMT [120.364033] udp_proxy [INFO] udp_proxy stat: kernel_sent_bytes 474484 kernel_received_bytes 214139 user_sent_bytes 167871 user_received_bytes 414116
  721. Thu, 18 May 2023 09:28:29 GMT [120.743531] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 23.35.109.225:443 (client n_received 589 n_sent 264) (backend n_received 264 n_sent 601)
  722. Thu, 18 May 2023 09:28:29 GMT [120.754031] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.194.64.149:8095
  723. Thu, 18 May 2023 09:28:29 GMT [121.184533] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  724. Thu, 18 May 2023 09:28:30 GMT [121.370031] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 350 n_sent 1406) (backend n_received 1406 n_sent 362)
  725. Thu, 18 May 2023 09:28:30 GMT [121.370534] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  726. Thu, 18 May 2023 09:28:30 GMT [121.432532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 52.71.162.250:443
  727. Thu, 18 May 2023 09:28:30 GMT [121.635031] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  728. Thu, 18 May 2023 09:28:30 GMT [121.636032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  729. Thu, 18 May 2023 09:28:30 GMT [121.790031] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  730. Thu, 18 May 2023 09:28:30 GMT [121.805532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  731. Thu, 18 May 2023 09:28:30 GMT [121.806532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  732. Thu, 18 May 2023 09:28:30 GMT [121.947531] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  733. Thu, 18 May 2023 09:28:30 GMT [122.113032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  734. Thu, 18 May 2023 09:28:30 GMT [122.135032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  735. Thu, 18 May 2023 09:28:30 GMT [122.147032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  736. Thu, 18 May 2023 09:28:30 GMT [122.277032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  737. Thu, 18 May 2023 09:28:32 GMT [123.654031] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 24398 n_sent 2382) (backend n_received 2382 n_sent 24410)
  738. Thu, 18 May 2023 09:28:32 GMT [124.008532] tcp_proxy [INFO] new tcp session created from svchost.exe to 40.83.240.146:443
  739. Thu, 18 May 2023 09:28:32 GMT [124.058031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  740. Thu, 18 May 2023 09:28:32 GMT [124.229031] tcp_proxy [INFO] new tcp session created from svchost.exe to 104.96.163.197:443
  741. Thu, 18 May 2023 09:28:33 GMT [124.656032] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.208:80 (client n_received 350 n_sent 1406) (backend n_received 1406 n_sent 362)
  742. Thu, 18 May 2023 09:28:33 GMT [124.656532] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 350 n_sent 1406) (backend n_received 1406 n_sent 362)
  743. Thu, 18 May 2023 09:28:33 GMT [124.657031] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  744. Thu, 18 May 2023 09:28:33 GMT [124.657031] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  745. Thu, 18 May 2023 09:28:35 GMT [126.760531] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 739 n_sent 1406) (backend n_received 1406 n_sent 751)
  746. Thu, 18 May 2023 09:28:35 GMT [126.761031] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  747. Thu, 18 May 2023 09:28:36 GMT [128.059531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  748. Thu, 18 May 2023 09:28:37 GMT [128.846031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  749. Thu, 18 May 2023 09:28:37 GMT [128.970532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  750. Thu, 18 May 2023 09:28:37 GMT [129.149030] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  751. Thu, 18 May 2023 09:28:37 GMT [129.149530] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  752. Thu, 18 May 2023 09:28:38 GMT [129.613030] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  753. Thu, 18 May 2023 09:28:38 GMT [129.948031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  754. Thu, 18 May 2023 09:28:40 GMT [131.989032] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  755. Thu, 18 May 2023 09:28:42 GMT [133.351532] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 4118 n_sent 1257) (backend n_received 1257 n_sent 4130)
  756. Thu, 18 May 2023 09:28:44 GMT [135.469531] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 581 n_sent 4216) (backend n_received 4216 n_sent 593)
  757. Thu, 18 May 2023 09:28:45 GMT [136.901531] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 581 n_sent 4216) (backend n_received 4216 n_sent 593)
  758. Thu, 18 May 2023 09:28:45 GMT [136.902032] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 16396 n_sent 6658) (backend n_received 6658 n_sent 16408)
  759. Thu, 18 May 2023 09:28:46 GMT [137.853531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  760. Thu, 18 May 2023 09:28:47 GMT [138.606035] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 350 n_sent 1406) (backend n_received 1406 n_sent 362)
  761. Thu, 18 May 2023 09:28:47 GMT [138.606533] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  762. Thu, 18 May 2023 09:28:47 GMT [138.669532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  763. Thu, 18 May 2023 09:28:47 GMT [138.684030] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 453 n_sent 184) (backend n_received 184 n_sent 465)
  764. Thu, 18 May 2023 09:28:47 GMT [138.684531] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 1339 n_sent 1590) (backend n_received 1590 n_sent 1351)
  765. Thu, 18 May 2023 09:28:47 GMT [138.685032] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 901 n_sent 184) (backend n_received 184 n_sent 913)
  766. Thu, 18 May 2023 09:28:47 GMT [138.685531] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  767. Thu, 18 May 2023 09:28:47 GMT [138.685531] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  768. Thu, 18 May 2023 09:28:47 GMT [138.686032] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  769. Thu, 18 May 2023 09:28:47 GMT [138.777531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  770. Thu, 18 May 2023 09:28:47 GMT [139.194531] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 389 n_sent 361) (backend n_received 361 n_sent 401)
  771. Thu, 18 May 2023 09:28:47 GMT [139.195031] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.80:80
  772. Thu, 18 May 2023 09:28:48 GMT [139.333532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  773. Thu, 18 May 2023 09:28:48 GMT [139.338531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  774. Thu, 18 May 2023 09:28:48 GMT [139.732532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  775. Thu, 18 May 2023 09:28:48 GMT [139.734531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  776. Thu, 18 May 2023 09:28:48 GMT [139.739031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  777. Thu, 18 May 2023 09:28:48 GMT [140.021532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  778. Thu, 18 May 2023 09:28:49 GMT [140.591532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  779. Thu, 18 May 2023 09:28:49 GMT [140.665531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  780. Thu, 18 May 2023 09:28:49 GMT [141.130531] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  781. Thu, 18 May 2023 09:28:50 GMT [141.504033] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  782. Thu, 18 May 2023 09:28:50 GMT [141.682534] tcp_proxy [INFO] new tcp session created from steam.exe to 23.55.168.194:443
  783. Thu, 18 May 2023 09:28:50 GMT [141.785032] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  784. Thu, 18 May 2023 09:28:50 GMT [141.952033] tcp_proxy [INFO] new tcp session created from steam.exe to 69.192.195.13:443
  785. Thu, 18 May 2023 09:28:52 GMT [143.644530] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 5386 n_sent 1701) (backend n_received 1701 n_sent 5398)
  786. Thu, 18 May 2023 09:29:00 GMT [151.960532] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  787. Thu, 18 May 2023 09:29:00 GMT [152.015532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  788. Thu, 18 May 2023 09:29:00 GMT [152.016532] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  789. Thu, 18 May 2023 09:29:08 GMT [159.628031] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  790. Thu, 18 May 2023 09:29:08 GMT [160.257746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  791. Thu, 18 May 2023 09:29:09 GMT [160.632245] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 3038 n_sent 1989) (backend n_received 1989 n_sent 3050)
  792. Thu, 18 May 2023 09:29:09 GMT [160.632747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  793. Thu, 18 May 2023 09:29:09 GMT [160.752244] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  794. Thu, 18 May 2023 09:29:09 GMT [161.088745] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  795. Thu, 18 May 2023 09:29:10 GMT [161.624245] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 3427 n_sent 2350) (backend n_received 2350 n_sent 3439)
  796. Thu, 18 May 2023 09:29:10 GMT [161.624745] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  797. Thu, 18 May 2023 09:29:10 GMT [161.712745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  798. Thu, 18 May 2023 09:29:10 GMT [161.713246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  799. Thu, 18 May 2023 09:29:10 GMT [162.027245] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 3427 n_sent 2350) (backend n_received 2350 n_sent 3439)
  800. Thu, 18 May 2023 09:29:10 GMT [162.027745] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  801. Thu, 18 May 2023 09:29:10 GMT [162.120246] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 2334 n_sent 2166) (backend n_received 2166 n_sent 2346)
  802. Thu, 18 May 2023 09:29:10 GMT [162.120745] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  803. Thu, 18 May 2023 09:29:10 GMT [162.158745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  804. Thu, 18 May 2023 09:29:10 GMT [162.162246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  805. Thu, 18 May 2023 09:29:10 GMT [162.293745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  806. Thu, 18 May 2023 09:29:11 GMT [162.303745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  807. Thu, 18 May 2023 09:29:11 GMT [162.304745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  808. Thu, 18 May 2023 09:29:11 GMT [162.600744] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.80:80 (client n_received 2358 n_sent 2166) (backend n_received 2166 n_sent 2370)
  809. Thu, 18 May 2023 09:29:11 GMT [162.601245] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  810. Thu, 18 May 2023 09:29:11 GMT [162.814745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  811. Thu, 18 May 2023 09:29:11 GMT [162.938245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  812. Thu, 18 May 2023 09:29:11 GMT [163.006746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  813. Thu, 18 May 2023 09:29:11 GMT [163.030745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  814. Thu, 18 May 2023 09:29:11 GMT [163.031246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  815. Thu, 18 May 2023 09:29:11 GMT [163.108245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  816. Thu, 18 May 2023 09:29:12 GMT [163.552745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  817. Thu, 18 May 2023 09:29:12 GMT [163.636245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  818. Thu, 18 May 2023 09:29:12 GMT [163.713245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  819. Thu, 18 May 2023 09:29:12 GMT [163.893245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  820. Thu, 18 May 2023 09:29:12 GMT [163.900746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  821. Thu, 18 May 2023 09:29:13 GMT [164.760246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  822. Thu, 18 May 2023 09:29:13 GMT [164.776245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  823. Thu, 18 May 2023 09:29:13 GMT [164.796247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  824. Thu, 18 May 2023 09:29:13 GMT [164.836745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  825. Thu, 18 May 2023 09:29:13 GMT [164.859745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  826. Thu, 18 May 2023 09:29:15 GMT [166.976747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  827. Thu, 18 May 2023 09:29:15 GMT [167.223245] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 159.153.191.240:443
  828. Thu, 18 May 2023 09:29:15 GMT [167.272245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  829. Thu, 18 May 2023 09:29:16 GMT [167.363245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  830. Thu, 18 May 2023 09:29:16 GMT [167.735745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  831. Thu, 18 May 2023 09:29:17 GMT [168.448746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  832. Thu, 18 May 2023 09:29:17 GMT [168.613745] udp_proxy [INFO] new udp session created from bf2042.exe to 13.125.236.252:21018
  833. Thu, 18 May 2023 09:29:17 GMT [168.614247] udp_proxy [INFO] new udp session created from bf2042.exe to 35.77.17.251:21171
  834. Thu, 18 May 2023 09:29:17 GMT [168.614748] udp_proxy [INFO] new udp session created from bf2042.exe to 43.198.77.12:21016
  835. Thu, 18 May 2023 09:29:17 GMT [168.615244] udp_proxy [INFO] new udp session created from bf2042.exe to 18.140.246.68:21049
  836. Thu, 18 May 2023 09:29:17 GMT [168.615746] udp_proxy [INFO] new udp session created from bf2042.exe to 13.233.37.220:21016
  837. Thu, 18 May 2023 09:29:17 GMT [168.616246] udp_proxy [INFO] new udp session created from bf2042.exe to 15.185.35.106:21000
  838. Thu, 18 May 2023 09:29:17 GMT [168.616745] udp_proxy [INFO] new udp session created from bf2042.exe to 16.171.60.81:21016
  839. Thu, 18 May 2023 09:29:17 GMT [168.617247] udp_proxy [INFO] new udp session created from bf2042.exe to 13.236.86.210:21016
  840. Thu, 18 May 2023 09:29:17 GMT [168.617745] udp_proxy [INFO] new udp session created from bf2042.exe to 44.234.42.155:21006
  841. Thu, 18 May 2023 09:29:17 GMT [168.618246] udp_proxy [INFO] new udp session created from bf2042.exe to 3.123.228.170:21057
  842. Thu, 18 May 2023 09:29:17 GMT [168.618747] udp_proxy [INFO] new udp session created from bf2042.exe to 13.40.48.98:21064
  843. Thu, 18 May 2023 09:29:17 GMT [168.619246] udp_proxy [INFO] new udp session created from bf2042.exe to 52.16.88.145:21085
  844. Thu, 18 May 2023 09:29:17 GMT [168.619745] udp_proxy [INFO] new udp session created from bf2042.exe to 50.18.40.25:21016
  845. Thu, 18 May 2023 09:29:17 GMT [168.620245] udp_proxy [INFO] new udp session created from bf2042.exe to 18.224.165.210:21022
  846. Thu, 18 May 2023 09:29:17 GMT [168.620746] udp_proxy [INFO] new udp session created from bf2042.exe to 3.85.17.192:21016
  847. Thu, 18 May 2023 09:29:17 GMT [168.621245] udp_proxy [INFO] new udp session created from bf2042.exe to 13.245.80.30:21021
  848. Thu, 18 May 2023 09:29:17 GMT [168.621245] udp_proxy [INFO] new udp session created from bf2042.exe to 52.67.214.22:21008
  849. Thu, 18 May 2023 09:29:17 GMT [169.068246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  850. Thu, 18 May 2023 09:29:19 GMT [171.183247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  851. Thu, 18 May 2023 09:29:20 GMT [171.344747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  852. Thu, 18 May 2023 09:29:20 GMT [171.345246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  853. Thu, 18 May 2023 09:29:20 GMT [171.348247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  854. Thu, 18 May 2023 09:29:20 GMT [171.348746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  855. Thu, 18 May 2023 09:29:20 GMT [171.349245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  856. Thu, 18 May 2023 09:29:20 GMT [171.350246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  857. Thu, 18 May 2023 09:29:20 GMT [171.352745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  858. Thu, 18 May 2023 09:29:20 GMT [171.362746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  859. Thu, 18 May 2023 09:29:20 GMT [171.363247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  860. Thu, 18 May 2023 09:29:20 GMT [171.365246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  861. Thu, 18 May 2023 09:29:20 GMT [171.366745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  862. Thu, 18 May 2023 09:29:20 GMT [171.367245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  863. Thu, 18 May 2023 09:29:20 GMT [171.369246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  864. Thu, 18 May 2023 09:29:20 GMT [171.371246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  865. Thu, 18 May 2023 09:29:20 GMT [171.372746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  866. Thu, 18 May 2023 09:29:20 GMT [171.378746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  867. Thu, 18 May 2023 09:29:20 GMT [171.389747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  868. Thu, 18 May 2023 09:29:20 GMT [171.390245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  869. Thu, 18 May 2023 09:29:20 GMT [171.391246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  870. Thu, 18 May 2023 09:29:20 GMT [171.391246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  871. Thu, 18 May 2023 09:29:20 GMT [171.405745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  872. Thu, 18 May 2023 09:29:20 GMT [171.406246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  873. Thu, 18 May 2023 09:29:20 GMT [171.406746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  874. Thu, 18 May 2023 09:29:20 GMT [171.407246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  875. Thu, 18 May 2023 09:29:20 GMT [171.407745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  876. Thu, 18 May 2023 09:29:20 GMT [171.408245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  877. Thu, 18 May 2023 09:29:20 GMT [171.409246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  878. Thu, 18 May 2023 09:29:20 GMT [171.410246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  879. Thu, 18 May 2023 09:29:20 GMT [171.556746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  880. Thu, 18 May 2023 09:29:20 GMT [171.559745] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 1604 n_sent 1444) (backend n_received 1444 n_sent 1616)
  881. Thu, 18 May 2023 09:29:20 GMT [171.560246] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  882. Thu, 18 May 2023 09:29:20 GMT [171.596246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  883. Thu, 18 May 2023 09:29:20 GMT [171.659747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  884. Thu, 18 May 2023 09:29:20 GMT [171.784246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  885. Thu, 18 May 2023 09:29:20 GMT [171.795746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  886. Thu, 18 May 2023 09:29:20 GMT [171.950246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  887. Thu, 18 May 2023 09:29:20 GMT [171.987747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  888. Thu, 18 May 2023 09:29:20 GMT [172.122246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  889. Thu, 18 May 2023 09:29:20 GMT [172.123745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  890. Thu, 18 May 2023 09:29:20 GMT [172.144245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  891. Thu, 18 May 2023 09:29:20 GMT [172.150747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  892. Thu, 18 May 2023 09:29:20 GMT [172.251746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  893. Thu, 18 May 2023 09:29:20 GMT [172.252246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  894. Thu, 18 May 2023 09:29:20 GMT [172.255745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  895. Thu, 18 May 2023 09:29:21 GMT [172.459747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  896. Thu, 18 May 2023 09:29:21 GMT [172.509247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  897. Thu, 18 May 2023 09:29:22 GMT [173.388746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  898. Thu, 18 May 2023 09:29:22 GMT [173.609245] tcp_proxy [INFO] tcpp_sess done: procname steam.exe dst 23.55.168.194:443 (client n_received 950 n_sent 6357) (backend n_received 6357 n_sent 962)
  899. Thu, 18 May 2023 09:29:22 GMT [173.612246] tcp_proxy [INFO] tcpp_sess done: procname steam.exe dst 69.192.195.13:443 (client n_received 1418 n_sent 4984) (backend n_received 4984 n_sent 1430)
  900. Thu, 18 May 2023 09:29:24 GMT [175.472746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  901. Thu, 18 May 2023 09:29:25 GMT [176.311747] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  902. Thu, 18 May 2023 09:29:26 GMT [177.635245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  903. Thu, 18 May 2023 09:29:28 GMT [179.378746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  904. Thu, 18 May 2023 09:29:28 GMT [179.791745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  905. Thu, 18 May 2023 09:29:28 GMT [180.115745] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 2358 n_sent 2166) (backend n_received 2166 n_sent 2370)
  906. Thu, 18 May 2023 09:29:28 GMT [180.116746] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  907. Thu, 18 May 2023 09:29:28 GMT [180.118246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  908. Thu, 18 May 2023 09:29:28 GMT [180.131247] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 4788 n_sent 4332) (backend n_received 4332 n_sent 4800)
  909. Thu, 18 May 2023 09:29:28 GMT [180.131746] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  910. Thu, 18 May 2023 09:29:28 GMT [180.147746] mudwfp_proxy [INFO] n_buffer_list_too_big 0 n_buffer_list_contbuf 0 n_buffer_list_zero_length 0 n_buffer_list_copy_failed 0 n_nonpagepool_alloc 2991 n_nonpagepool_free 2889 n_nonpagepool_udp_classify_alloc 821 n_nonpagepool_udp_classify_free 821 n_nonpagepool_flow_context_alloc 2478 n_nonpagepool_flow_context_free 2473
  911. Thu, 18 May 2023 09:29:28 GMT [180.273746] tcp_proxy [INFO] tcp_proxy stat: n_eps 52 n_sess 27 n_c_connaborted 7 n_c_connreset 36 n_b_connaborted 3 n_b_connreset 0 n_hit_fdsetsize 2637
  912. Thu, 18 May 2023 09:29:29 GMT [180.312746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  913. Thu, 18 May 2023 09:29:29 GMT [180.401745] udp_proxy [INFO] udp_proxy stat: n_sess 130 n_invalid_magics 1 n_drop_broadcast 0
  914. Thu, 18 May 2023 09:29:29 GMT [180.402246] udp_proxy [INFO] udp_proxy stat: n_kernel_sent 524340 n_kernel_received 261334 n_user_sent 190728 n_user_received 439508
  915. Thu, 18 May 2023 09:29:29 GMT [180.402745] udp_proxy [INFO] udp_proxy stat: kernel_sent_bytes 524340 kernel_received_bytes 261334 user_sent_bytes 190728 user_received_bytes 439508
  916. Thu, 18 May 2023 09:29:29 GMT [180.742246] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 4788 n_sent 4332) (backend n_received 4332 n_sent 4800)
  917. Thu, 18 May 2023 09:29:29 GMT [180.743245] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  918. Thu, 18 May 2023 09:29:29 GMT [181.055745] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  919. Thu, 18 May 2023 09:29:30 GMT [181.313245] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 23.20.233.83:443
  920. Thu, 18 May 2023 09:29:31 GMT [182.365245] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 52.71.162.250:443 (client n_received 4802 n_sent 1580) (backend n_received 1580 n_sent 4814)
  921. Thu, 18 May 2023 09:29:31 GMT [182.422246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  922. Thu, 18 May 2023 09:29:31 GMT [182.843746] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 5542 n_sent 5094) (backend n_received 5094 n_sent 5554)
  923. Thu, 18 May 2023 09:29:31 GMT [182.844245] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.77:80
  924. Thu, 18 May 2023 09:29:31 GMT [182.923247] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  925. Thu, 18 May 2023 09:29:34 GMT [186.257245] tcp_proxy [INFO] tcpp_sess done: procname svchost.exe dst 104.96.163.197:443 (client n_received 521 n_sent 8879) (backend n_received 8879 n_sent 533)
  926. Thu, 18 May 2023 09:29:39 GMT [190.706246] tcp_proxy [INFO] new tcp session created from eabackgroundservice.exe to 23.20.233.83:443
  927. Thu, 18 May 2023 09:29:40 GMT [191.851246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  928. Thu, 18 May 2023 09:29:42 GMT [193.306245] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 9801 n_sent 2908) (backend n_received 2908 n_sent 9813)
  929. Thu, 18 May 2023 09:29:46 GMT [197.299245] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  930. Thu, 18 May 2023 09:29:53 GMT [205.283244] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  931. Thu, 18 May 2023 09:29:54 GMT [205.458247] tcp_proxy [INFO] new tcp session created from bf2042.exe to 54.217.60.188:443
  932. Thu, 18 May 2023 09:29:54 GMT [205.473744] tcp_proxy [INFO] tcpp_sess done: procname asdsvc.exe dst 211.115.106.77:80 (client n_received 389 n_sent 361) (backend n_received 361 n_sent 401)
  933. Thu, 18 May 2023 09:29:54 GMT [205.474746] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  934. Thu, 18 May 2023 09:29:55 GMT [206.320745] tcp_proxy [INFO] new tcp session created from asdsvc.exe to 211.115.106.208:80
  935. Thu, 18 May 2023 09:29:57 GMT [208.982246] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  936. Thu, 18 May 2023 09:30:09 GMT [220.878714] udp_proxy [INFO] new udp session created from discord.exe to 162.159.128.233:443
  937. Thu, 18 May 2023 09:30:10 GMT [221.759481] tcp_proxy [INFO] tcpp_sess done: procname bf2042.exe dst 54.217.60.188:443 (client n_received 893 n_sent 4825) (backend n_received 4856 n_sent 905)
  938. Thu, 18 May 2023 09:30:10 GMT [222.257133] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  939. Thu, 18 May 2023 09:30:10 GMT [222.288135] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  940. Thu, 18 May 2023 09:30:10 GMT [222.290134] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  941. Thu, 18 May 2023 09:30:11 GMT [222.313634] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  942. Thu, 18 May 2023 09:30:11 GMT [222.329135] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  943. Thu, 18 May 2023 09:30:11 GMT [222.329635] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  944. Thu, 18 May 2023 09:30:11 GMT [222.416634] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 3.223.106.159:443
  945. Thu, 18 May 2023 09:30:11 GMT [222.417133] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 3.223.106.159:443
  946. Thu, 18 May 2023 09:30:11 GMT [222.456634] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 23.194.101.103:443
  947. Thu, 18 May 2023 09:30:11 GMT [222.479133] tcp_proxy [INFO] new tcp session created from ealocalhostsvc.exe to 184.86.196.184:443
  948. Thu, 18 May 2023 09:30:11 GMT [222.500635] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.196.150.158:443
  949. Thu, 18 May 2023 09:30:11 GMT [222.500635] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 44.196.150.158:443
  950. Thu, 18 May 2023 09:30:11 GMT [222.583634] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.194.64.149:8095 (client n_received 2757 n_sent 7241) (backend n_received 7241 n_sent 2769)
  951. Thu, 18 May 2023 09:30:11 GMT [222.594633] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  952. Thu, 18 May 2023 09:30:11 GMT [222.646634] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 162.247.243.29:443
  953. Thu, 18 May 2023 09:30:11 GMT [222.664133] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  954. Thu, 18 May 2023 09:30:11 GMT [222.664133] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  955. Thu, 18 May 2023 09:30:11 GMT [222.664634] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 184.86.196.184:443
  956. Thu, 18 May 2023 09:30:11 GMT [222.860672] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 184.86.196.184:443
  957. Thu, 18 May 2023 09:30:11 GMT [223.073649] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  958. Thu, 18 May 2023 09:30:11 GMT [223.157185] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 20045 n_sent 9515) (backend n_received 9515 n_sent 20057)
  959. Thu, 18 May 2023 09:30:11 GMT [223.224656] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 11692 n_sent 6924) (backend n_received 6924 n_sent 11704)
  960. Thu, 18 May 2023 09:30:11 GMT [223.233654] tcp_proxy [INFO] new tcp session created from eadesktop.exe to 3.5.8.187:443
  961. Thu, 18 May 2023 09:30:12 GMT [223.330656] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 3809 n_sent 591) (backend n_received 591 n_sent 3821)
  962. Thu, 18 May 2023 09:30:12 GMT [223.330656] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 44.194.64.149:8095 (client n_received 2707 n_sent 7365) (backend n_received 7365 n_sent 2719)
  963. Thu, 18 May 2023 09:30:12 GMT [223.331156] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 16213 n_sent 4508) (backend n_received 4532 n_sent 16225)
  964. Thu, 18 May 2023 09:30:12 GMT [223.331156] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 162.247.243.29:443 (client n_received 10947 n_sent 2882) (backend n_received 2882 n_sent 10959)
  965. Thu, 18 May 2023 09:30:12 GMT [223.363154] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  966. Thu, 18 May 2023 09:30:12 GMT [223.506826] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 142.251.33.112:443
  967. Thu, 18 May 2023 09:30:12 GMT [223.529220] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 23.202.207.69:443
  968. Thu, 18 May 2023 09:30:12 GMT [223.664279] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 34.198.41.220:443 (client n_received 4902 n_sent 591) (backend n_received 591 n_sent 4914)
  969. Thu, 18 May 2023 09:30:12 GMT [223.929145] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  970. Thu, 18 May 2023 09:30:12 GMT [224.003645] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 649 n_sent 264) (backend n_received 264 n_sent 661)
  971. Thu, 18 May 2023 09:30:12 GMT [224.034435] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 184.86.196.184:443 (client n_received 517 n_sent 1310) (backend n_received 2620 n_sent 529)
  972. Thu, 18 May 2023 09:30:12 GMT [224.100449] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 34.202.191.29:443
  973. Thu, 18 May 2023 09:30:12 GMT [224.100949] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  974. Thu, 18 May 2023 09:30:12 GMT [224.196448] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  975. Thu, 18 May 2023 09:30:13 GMT [224.626551] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  976. Thu, 18 May 2023 09:30:13 GMT [224.783051] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 52.23.45.115:443
  977. Thu, 18 May 2023 09:30:13 GMT [225.017788] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 54.86.96.11:8095
  978. Thu, 18 May 2023 09:30:13 GMT [225.088786] udp_proxy [INFO] new udp session created from svchost.exe to 168.126.63.1:53
  979. Thu, 18 May 2023 09:30:13 GMT [225.253458] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.23.9:443
  980. Thu, 18 May 2023 09:30:14 GMT [225.389461] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 151.101.23.9:443
  981. Thu, 18 May 2023 09:30:14 GMT [225.716867] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 52.23.45.115:443
  982. Thu, 18 May 2023 09:30:14 GMT [225.850955] tcp_proxy [INFO] new tcp session created from qtwebengineprocess.exe to 159.153.190.212:443
  983. Thu, 18 May 2023 09:30:15 GMT [226.615956] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 151.101.23.9:443 (client n_received 517 n_sent 1310) (backend n_received 3930 n_sent 529)
  984. Thu, 18 May 2023 09:30:15 GMT [226.631456] tcp_proxy [INFO] tcpp_sess done: procname qtwebengineprocess.exe dst 52.23.45.115:443 (client n_received 2156 n_sent 4959) (backend n_received 4959 n_sent 2168)
  985.  
Tags: BF2042 mudfish wft
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!